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BY JAIKUMAR VIJAYAN 
An administrative error at 


| Web hosting provider Inter- 


land Inc. may have caused 
thousands of hosted sites to 
become infected with mali- 


| cious code. 


Visitors to those infected 
Interland-hosted sites were in 
turn vulnera- 
_INSIDE __ ble to having 
Web hosting: their systems 
C&W offersanew compromised 


service while it by code that 
continues topull = could allow 


mattet Paget them to be 
turned into 
proxy servers, a security ex- 
pert said last week. 
Atlanta-based Interland 
manages over 7,000 servers 
and hosts more than 250,000 


IT Links to 
Blackout 
Investigated 


Feds search system logs | 


for signs of sabotage 


BY DAN VERTON 
ASHINGTON 

Federal and private-sector of- 

ficials last week said they still 

can’t rule out cybersabotage 

or IT-based failures as the 

cause of the Aug. 14 blackout. 
Although no clear-cut evi- 


| dence has been found to sug- 


gest that the blackout was the 
result of anything other than 


| an internal technical failure, 
| the FBI’s Joint Terrorism Task | 
Blackout, page 51 | 
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Security Breach at Web 
Host Leaves Sites at Risk 


Visitors to thousands of sites left vulnerable to 
infection; provider says flaw has been fixed 


Web sites for predomin: antly 
small and medium-size busi- 
nesses. Jeff Reich, director of 
security at Interland, last week 
confirmed that a security 
breach caused disruptions in 
service for many of the hosted 
sites during the last week of 
August. 


9/11: 


Reich said the security 
breach resulted in malicious 
HTML code being injected 
into the footers that appear at 
the bottom of Web pages host- 
ed on Interland’s servers. The 
code prevented infected Web 
pages from loading properly, 
causing some sites to become 
unavailable 

The company learned of the 

Interland, page 12 


WALL STREET REMEMBERS: A July ceremony at the NYSE honoring fire- 
fighters and the U.S. Marine Corps. For financial firms, the USA Patriot Act 
has been another reminder of 9/11, and IT has had to hustle to comply. 


Compliance Laws Vex IT 


BY LUCAS MEARIAN 
No matter how hard Wall 
Street firms try to dress 
them up with flowers and 
patriotic bunting, the con- 
crete barricades outside 
their entrances are a con- 
stant reminder to Ravi Jeth- 
mal of the terrorist attacks 
that occurred two years ago 
just blocks from his Broad 
Street brokerage office. 
Another reminder is the 
USA Patriot Act and its 
Oct. 1 deadline for compli- 
ance officers such as Jeth- 


mal to check the identities 
of new customers and 
monitor them to ensure 
that they’re not laundering 
money for terrorists. 
Compliance, page 5 
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The right software can transform 
your infrastructure into 
an on-demand environment. 


The difference between a successful business and an uncontrolled, unresponsive 
enterprise is simple. It’s all in the software. With the right management software, 
seamlessly integrated, you can now have more control than ever over your entire 
IT environment. You can make sure that all your company’s vital information 
is not only organized and stored efficiently, but also completely secure. You 
can get the big picture across your whole organization, allowing you to make 
sound business decisions and move ahead with confidence. And you can 
decrease both hardware and labor costs while Unicenter? 
increasing ROI. Best of all, you can do it by ent 
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4 Much work still needs to be 
done to strengthen the public/ 
private partnership on critical 
infrastructure security. 


4 The private sector is wary 
of heavy-handed federal secu- 
rity laws in response to the 
9/11 terrorist attacks... 


... But legislation may be 
introduced that would impose 
cybersecurity requirements 
on businesses. 
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Linux users, requesting pay- 
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munications infrastructure. 
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Protection of Critical 
Systems Still Haphazard 


Some progress made, but private/public 
partnership remains weak, experts say 


BY DAN VERTON 
WASHINGTON 
WO YEARS after ter- 
rorists killed 3,000 
people, the govern- 
ment and the private 
sector are still 
struggling to define 
priorities for the se- 
curity of the na- 
tion’s critical infra- 
structure and to 
turn those priorities 
into real systems 
and programs. 

“We've made sig- 
nificant progress 
toward shoring up 
the necessary layers 
of homeland security that 
have helped make America 
safer,” said Secretary of 
Homeland Security Tom 
Ridge, speaking last week at 
the American Enterprise Insti- 
tute in Washington. 

Ridge credited the intelli- 
gence community’s Terrorist 
Threat Integration Center and 
the Department of Homeland 
Security’s Information Analy- 
sis and Infrastructure Protec- 
tion Directorate with helping 
to improve threat analysis and 
information sharing. 

While those efforts were 
desperately needed, security 
experts said progress has been 
slowed by the departure of 
cybersecurity czar Richard 
Clarke in February, when the 
DHS was formed. They said 
the department has a long way 
to go toward asserting its lead- 
ership in building a more solid 
relationship with the private 
companies that own and oper- 
ate more than 85% of the na- 
tion’s most critical facilities 
and information networks. 

“From an information-shar- 
ing perspective, there has 
been progress, but much, 
much less than I had hoped 
for in two years,” said John 
Pescatore, an analyst at Gart- 


>» «4 
DHS CHIEF Ridge 
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ner Inc. in Stamford, Conn. 
Allen Paller, research direc- 

tor at the Bethesda, Md.-based 

SANS Institute, painted a 

bleak picture of homeland se- 

| curity, one marred by compet- 
ing interests. 

“Since September 
2001, the government 
and other critical-in- 
frastructure institu- 
tions have installed 
more than | million 
Internet-connected 

ystems with signifi- 
cant vulnerabilities,” 

> he said. “The staff 

= who manage systems 

” have fallen further 

| behind in security skills, the 

automated attack tools have 

gotten more sophisticated and 

more effective, and the ven- 
dors have sent marketing peo- 


| 
| 


BY DAN VERTON 

The Blackout of 2003, which 
remains under investigation 

| this week, not only highlight- 
ed the vulnerable nature of the 
| nation’s critical infrastructure 
systems, but also reinvigorat- 
ed the debate over govern- 
ment regulation of security in 
| the private sector. 

“A common explanation for 
| the problems facing the elec- 
tricity system is that private 

| firms have had inadequate in- 

| centives to invest in distribu- 
tion lines,” said Peter Orzag, a 
senior fellow at The Brook- 
ings Institution in Washington. 
“We cannot simply let markets 
work; we must make markets 
work. We can’t just leave it up 
to the market to protect us 
from terrorist attacks. Govern- 
ment intervention in some 

| form will be necessary.” 











ple to Washington with the ex- 
press purpose of keeping the 
government from exerting any 
real pressure on the vendors to 
improve the situation.” 

Paller added that “only the 
vendors have the economies of 
scale to reduce the global vul- 
nerability to cyberattacks. But 
they will not act until the gov- 
ernment recognizes it must 


| use its procurement power to 


persuade them to act in the na- 


| tional and global interest.” 


Ken Watson, president of 
the Partnership for Critical In- 
frastructure Security, a Wash- 
ington-based industry alliance, 
and director of critical-infra- 
structure protection at Cisco 
Systems Inc., said he has met 
several times with the new 
management team at the In- 
formation Analysis and Infra- 
structure Protection Direc- 
torate. Watson said he’s “very 
encouraged” by the priority 
the DHS is placing on working 


Private-Sector IT Wary of 
Government Intervention 


Orzag made those comments 
during a Sept. 4 congressional 
hearing into the cybersecurity 


| aspects of the blackout. 


According to Orzag, a work- 
able model would include a 
mix of government regulation, 
market incentives and a man- 
dated requirement to pur- 
chase terrorism insurance that 
bases premiums on how well 


| companies meet certain secu- 
| rity standards. 


However, some private-sec- 
tor CIOs don’t see the need 


Coe oe eoeeseeseeseeeereeeeoeeees 


The instinct for 

self-preserva- 
tion never needed to 
be legislated. 


Se eeereeecseseseeseseseeseesees 


| BRUCE BLITCH, CIO, 


TESSENDERLO KERLEY INC. 





|} and industry to do 
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with the private sector on cy- 
bersecurity issues. However, 
he acknowledged, “almost all 
the DHS principals are new, 
and that newness brings with 
it an education and relation- 
ship-building process.” 

One area where immediate 
action is needed is in infra- 


| : 
structure interdependency re- 


search. When asked by Con- 
gress during a hearing on Sept. 
4 if there was one weak link in 
the security of the power grid, 
for example, Watson said the 
interdependent nature of all 
critical infrastructures makes it 
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difficult to label any one sector 
of the economy as a weak link. 
“The first thing the govern- 
ment can do is provide guid- 
ance on priorities,” he said. 

And though several efforts 
are under way to create infra- 
structure models to study pub- 
lic/private interdependencies, 
“a comprehensive infrastruc- 
ture modeling project will re- 
quire additional government 
funding,” said Watson. “With- 
out higher funding levels, this 
may take a decade to accom- 
plish and only marginally ben- 
efit the [private] sector.” D 


What the Private Sector 
Wants the DHS to Do 


Rapidly organize private critical-infrastructure sectors named in 
the national strategy and clarify sector coordinator roles. 


Improve coordination among all national labs and federal 

departments to apply computer models and simulations to critical-infra- 
structure areas. Ensure that the private sector is involved in setting modeling 
objectives, peer review of model creation, data mining and obtaining results. 


Sponsor comprehensive regional and national exercises that 

cover the physical and cyber aspects of attacks on critical infrastruc- 
tures. Ensure that sector coordinators are involved in exercise design and 
scenario creation and are the primary recipients of lessons learned. 


for greater government inter- 
vention. They argue that the 
security reality facing compa- 
nies today is enough to force 
even the most reluctant firms 
to do what is necessary to se- 
cure their enterprises, includ- 
ing taking proactive steps to 
work with the government. 
“The ultimate responsibility 
has always fallen to the indi- 
vidual company 


its best to protect 
itself,” said Bruce 
Blitch, CIO at 
Tessenderlo Kerley 
Inc., a chemical 
manufacturing firm in 
Phoenix. “The instinct for self- 
preservation never needed to 
be legislated.” 

From Blitch’s perspective, 
the security effort has been 
characterized by close cooper- 
ation with the Department of 
Homeland Security and other 
government agencies. “Had 
those agencies dictated re- 
quirements to industry with- 


IT RESPONDS 


For comprehensive coverage 
of post-9/11 security-related 
issues, visit our Web site: 


© QuickLink 21030 
www.computerworld.com 


out the benefit of that collabo- 
ration and cooperation, it is 
extremely unlikely that the re- 
action would have been any- 
where near as good as it has 
been,” he said. 

Joseph Puglisi, CIO at Em- 
cor Group Inc., a mechanical 
and electrical construction 
firm in Norwalk, Conn., 
agreed. “The DHS has been 
some help in alert- 
ing us to new 
threats ... since 
[Sept. 11],” he said. 
“But the onus re- 
mains with us to 
both educate and 
enforce good practice.” 

The most important initia- 
tive for the government to un- 
dertake now would be to force 
the Securities and Exchange 
Commission to require pub- 
licly traded companies to re- 
port on information security 
readiness, said John Pescatore, 
an analyst at Gartner Inc. “But 
we haven’t seen any move- 
ment on this at all.” D 
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Congress Could See Cybersecurity Legislation 


One proposal would require companies 
to document efforts to secure systems 





BY GRANT GROSS 
WASHINGTON 


| 
| 
| 
As Congress reconvened last | 
week after a month-long break, | 
some members were consider- 
ing introducing legislation that | 
would impose cybersecurity | 
requirements on the private | 
sector. 

One proposal would require 
publicly held companies to 
document their cybersecurity 
efforts by filling out a check- 
list in their filings with the 
US. Securities and Exchange 
Commission. 

Rep. Adam Putnam (R-Fla.), 
chairman of the House Gov- 
ernment Reform Committee’s 
Subcommittee on Technology, 
Information Policy, Intergov- 
ernmental Relations and the 
Census, might introduce such 
a bill late this year, according 
to Bob Dix, the subcommit- 
tee’s staff director. 

Although antispam legisla- 
tion will continue to be the 
major technology focus in 
Congress this fall, Putnam’s 
subcommittee is looking at the 
“pluses and minuses” of a cy- 
bersecurity reporting require- 
ment, similar to SEC account- 
ing reporting requirements 
mandated in the Sarbanes- 
Oxley Act, Dix said. 


Up the Chain 

Such a law would raise aware- 
ness about cybersecurity issues | 
beyond the CIO level to CEOs 
but likely avoid specific cyber- 
security requirements that may 
not apply to all businesses, said 
Daniel Burton, vice president 
of government affairs at securi- 
ty products vendor Entrust Inc. 
in Addison, Texas. 

“It does not mandate you 
must do x, which we all realize 
is a false start,” Burton said of 
an SEC cybersecurity report- 
ing requirement. “Different 
companies have different secu- | 
rity needs and different risks. 

So it’s impossible to set up a 
mandate for everyone.” 

Stockholders and boards of 





directors could then judge for 


themselves whether a compa- 


| ny is adequately dealing with 


cybersecurity, Burton said. 
“Everyone from the board lev- 
el on down is really going to 
be focused on what [the cy- 


| bersecurity reports] are say- 


ing,” he added. 

The bill Putnam is consider- 
ing wouldn’t require compa- 
nies to lay out specifics about 
their cybersecurity efforts, Dix 
said. Instead, it could take the 
form of a checklist, asking such 


questions as, “Do you have an 


Continued from page 1 
Compliance 


The Patriot Act, passed in 
the wake of the Sept. ll, 2001, 


terrorist attacks, requires fi- 


nancial services companies to 
verify customer identities, 
submit suspicious-activity re- 
ports to the U.S. Department 
of the Treasury’s Financial 
Crimes Enforcement Network 
and check customers against 
crime databases established 
by law enforcement agencies. 
“You get e-mails from Fin- 


| CEN asking if this person is on 


your list of customers. Keep- 
ing up with all the FinCEN re- 
quests is a lot of work,” said 


Jethmal, vice president of com- | 
pliance at Abel/Noser Corp. 


Avivah Litan, an analyst at 


| Gartner Inc., said CIOs are 


“much more risk-manage- 
ment-focused since 9/11.” 
Under scrutiny by regula- 
tors, financial services firms 
are installing applications that 


| perform risk-scoring and use 
| complex algorithms to identi- 


fy unusual customer trends 
within transaction activity. 
Although the Patriot Act’s 
Oct. 1 deadline applies to con- 
firming the identity of only 
new customers, Scott Barton, 
compliance officer at Colum- 
bus, Ohio-based Huntington 
Bancshares Inc., said regula- 
tors gave the financial compa- 
nies just enough “rope to hang 


| 
| 
| 
| 


up-to-date IT assets list?” 

The bill would be intended 
to raise cybersecurity aware- 
ness among top-level execu- 
tives at companies, Dix added. 

If such a bill is introduced, 
the subcommittee would ex- 
pect some opposition, Dix said. 
“There will be some who say 
anything the government pro- 


| poses is a burden,” he said. 


But Congress may feel the 
need to act on cybersecurity 
legislation if more viruses or 
worms are unleashed onto the 
Internet, said Robert Hous- 
man, a lawyer in the homeland 
security practice at Bracewell 


| & Patterson LLP, a law firm in 


ourselves.” Barton pointed out 
that the act requires banks to 
have a reasonable basis for 
knowing the identity of exist- 


ing customers, but “if we’re go- | 


ing to be scrutinized after the 
fact, how do we prove that?” 
TowerGroup in Needham, 
Mass., estimates that by 2007, 
the global financial services 
industry will have spent $523 
billion on operational resilien- 
cy — technology upgrades for 


| disaster recovery, business 


continuity and security. U.S. 
retail banks alone will spend 


| $1.1 billion, or 4.4% of their IT 


| 
| 
| 
| 
| 
| 


| 
| 
| 
| 
Washington. Indeed, lawmak- | 
ers may have to do something 
in response to the Sobig and | 
Blaster worms, which infected | 
computers worldwide and 
caused millions of dollarsin | 
damage, he said. 

Housman said he expects to 


see some sort of cybersecurity 


legislation getting attention in 


requirement, like the one Put- 
nam’s subcommittee is consid- 
ering, would hold companies 


| accountable for their cyberse- | 


| getting attempts to break into | 


curity efforts, he added. 
But, Housman said, “if you 
run a major business ... you’re 


| budgets, in response to 9/11 


| tion service and made it intoa | 
| covery have became a very 





| between 2003 and 2007, Tow- 
erGroup predicts. Artificial in- 


telligence systems for tracking 
customer activity will carry 
the highest price tags. 

“What these systems do is 


examine transactions in con- 


text rather than looking at 
them individually. If there’s 


| . . e 
any deviation from the norm, 


it flags it,” said TowerGroup 
analyst Virginia Garcia. 


| Business Opportunities 


| ‘ . 
Apart from putting pressure 


on compliance officers like 
Jethmal and Barton, who called 


| the Patriot Act the “No. 1 issue 


right now,” the terrorist attacks 
of Sept. Il have spawned a cot- 
tage industry around digital | 
records retention, security and | 
protections against money- 
laundering. 
For example, since the at- | 
tacks, New York-based J.P. 
Morgan Chase & Co. has taken 
an internal digital data-reten- 


business, said Bill Telkowski, 
chief technology officer at J.P. 
Morgan’s I-Solutions group. 
The bank sells space on a pair 
of geographically dispersed 
100TB redundant storage-area | 
networks to 75 customers, who | 
can retrieve their information | 
over a virtual private network. | 
“People learned paper isn’t 
| 
| 


a safe method of information 
management,” Telkowski said. 
“We have people looking to | 


Everyone from 

the board level 
on down is really 
going to be focused 
on what [the cyber- 
security reports] 


| are saying. 


DANIEL BURTON, VICE PRESIDENT 
NTRUST 


| | OF GOVERNMENT AFFAIRS, ENTR 
| Congress this year. A reporting 


your system on a fairly regular 


basis. When you start having 


to report those numbers ... 
that could make some of your 


| shareholders a little queasy.” D 


Gross writes for the IDG News 
Service. 


convert warehouses of paper 
to digital storage so they'll 
never lose their records.” 
Mike Curran, CIO at the 
Boston Stock Exchange, said 
that while he doesn’t have a 
bigger overall budget, he has 
earmarked more money for 
disaster recovery and business 


| continuity. “The biggest thing 


we worked on after 9/11 was 


| getting the networks back up. 


Now, if you break it in one 

place, you just go the other di- 

rection to get there,” he said. 
The Boston Stock Exchange 


| also built its own redundant 
| Sonet-based network to re- 


place a point-to-point network 


| that ties into the New York 


Stock Exchange. 

The Sept. ll attacks also 
prompted the NYSE to build a 
Sonet-based network after 
trading was halted as a result 
of the destruction of a central 
convergence of service pro- 
vider circuits below the World 


| Trade Center. 


“Security and disaster re- 


high priority. CIOs have be- 
come very nervous about be- 
ing exposed by the next terror- 
ist attack,” said Gartner’s Litan. 
“They don’t want to be caught 
with their pants down.” D 


ACY PITFALL 
>. airline secur aws could cause a 
rift with Europe over privacy 
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www.computerworld.com 
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AT DEADLINE 


Judge Set to Begin 
Hearing on MCI.. . 


AU.S. Bankruptcy Court judge in 
New York today is scheduled to 
begin a hearing to determine 
whether WorldCom Inc., which 
now does business under its MCI 
brand name, should be cleared 
to emerge from Chapter 11 bank- 
ruptcy protection. The hearing is 
due to last two weeks, but might 
require an additional week, MCI 
said. The judge could issue a rul- 
ing by early October. 


. .. As Company 
Expands Board 


In other MCI news, the company 
said it plans to add five board 
members after it emerges from 
Chapter 11 protection. The ap- 
pointments will increase the 
number of directors on the board 
to nine. Meanwhile, AT&T Corp. 
filed a civil racketeering lawsuit 
against MCI in connection with 
an alleged scheme to illegally 
route phone calls. MCI has de- 
nied the allegations. 


White House CTO 
Takes Vendor Job 


Norman Lorentz resigned as 
chief technology officer at the 
Office of Management and Bud- 
get and took a job as senior vice 
president at DigitalNet Govern- 
ment Solutions LLC, a govern- 
ment IT contractor in Herndon, 
Va. His departure came just two 
days after President Bush ap- 
pointed a new e-government 
chief, a position that Lorentz had 
been filling on a temporary basis. 
(See related story, page 14.) 


Short Takes 


JOHN HANCOCK FINANCIAL SER- 
VICES INC. announced that it 
awarded IBM a six-year, $254 
million contract to install and 
manage an on-demand comput- 
ing infrastructure for the Boston- 
based company. . .. MICROSOFT 
CORP. warned of a “critical” se- 
curity hole in its Visual Basic for 
Applications development tool. 


NEWS 


MARK HALL ®*ON THE MARK 


Real Networks 
Signs onto Sun’ ... 


... Project Madhatter, boosting the prospects that real people with 
real jobs will want the low-cost, Linux-based desktop when the Unix sys- 
tems giant unveils it Sept. 18. Later this week, the two companies will 
announce that RealPlayer 8 will be bundled with the Intel-based PC, 
adding a streaming media client to a machine that will also be loaded 
with open-source goodies like StarOffice and the Mozilla browser. Al- 
though the new boxes lack all of the capabilities of a fully configured 
Windows client, Sun executives argue that IT managers will like them 


software they never use 
will love a PC with only 
free bits. ® The appear- 
ance and support of Linux 
desktops from major IT 
vendors is an opportunis- 
tic response to users’ frus- 
tration with software 
costs. In part, that’s be- 
cause the cost of software as 
a proportion of the cost of a 
PC has been rapidly rising. 
Dean McCarron, an ana- 
lyst at Mercury Research 
in Scottsdale, Ariz., says 


| SCO May Send Unix License 
‘Invoices to Linux Users 


BY TODD R. WEISS 
| The SCO Group Inc. said last 

| week that it’s considering mail- 
| ing invoices to companies that 
| it identifies as Linux users, 
asking them to pay a licensing 
fee of $699 per CPU for the 

| right to run the open-source 
operating system. 

The invoice option is the 
latest twist in SCO’s campaign 
to compel corporate Linux 
users to license its UnixWare 
| technology or risk being sued 
for allegedly violating the Lin- 
don, Utah-based company’s 
intellectual property rights. 





No invoices have been pre- 
| pared for mailing, said SCO 


because they can be deployed in areas | 
such as call centers, where high-perfor- | 
mance machines are a blessing but end | 
users don’t need everything Microsoft 

puts into its desktop software — espe- | 
cially the price tag. Sun is betting that | 
cost-obsessed managers who hate paying for | 
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that 10 years ago, the average price of 
PCs sold to corporations was approxi- 
mately $1,500 to $1,750. Today, he esti- 
mates, the average price of the machines 
you buy is $800. During that same time, 
he points out, “software prices have 
pretty much remained the same.” Since 


most of you get machines 
loaded with software by 
an OEM or value-added 
reseller, figuring how 
much you can save by 
eliminating its cost is an 
inexact science at best, 
McCarron admits. But he 
figures that for most busi- 
nesses, it would be about 
$90 per computer. So, if 
you need five machines, 
maybe a Madhatter from 
Sun isn’t such a deal. But 
if you need 5,000, well, 
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you're almost talking real money. ® Nearly 
every corporate IT environment can af- 
ford a LAMP. Not the light-emitting thingy on 
your desk, but the Linux, Apache, MySQL 
and PHP servers running your Web site. 
Some might argue that Perl is the “P,” but 
for the majority of you, it’s PHP, and 
you're probably already on Zend Tech- 
nologies Ltd.’s Web site downloading to- 
day’s release of Zend Studio 3.0 from the 
Ramat Gan, Israel-based company. The 
new IDE offers developers workgroup ca- 
pabilities, such as file and project inspec- 
tors, a new code profiler and code analyz- 
er, as well as a shortcuts feature that sim- 
plifies complex coding tasks with a few 
quick keystrokes. It’ll set you back $195; 
pay $249 and Zend will throw in a year of 
updates. ® As with teenagers, the first rule 
of databases is, they don’t get smaller. And 
growing them is expensive because they 
need more disks, take longer to back up 
and require more care and feeding. Jim 
Lee, vice president of product develop- 
ment at Princeton Softech Inc. in Prince- 
ton, N.J., says the problem is tricky be- 
cause you can’t just archive and remove 
old data willy-nilly because applications 
often share database tables. And one 
app’s use of data may be more dependent 
on one data set than another app. So 
what happens, he says, is that unused 
data is never removed. His company’s 
impossibly long-named Archive for 
Servers Oracle Application Edition might 
help when it ships tomorrow. It lets you 
archive seldom-accessed data inside applica- 
tions in real time, so only active data gets 
stored in an application’s database. Think 
$50,000 for the Windows version. Double 
that for Unix and Linux. Ouch! D 


| spokesman Blake Stowell. But 
the strategem is seen by SCO 
as a potential way to get users 
to respect its claim that Linux 
is an unauthorized derivative 
| of its Unix code. 
| Invoices could be mailed 
within the next month or 
two to about 1,000 users that 
are now being identified by 
SCO employees via Web site 
searches and scans of news 
stories, Stowell said. 

“We're not trying to make 


| Nonetheless, he warned that 
even if the software vendor 
eventually loses a breach- 
of-contract lawsuit it filed 





this into a witch hunt,” he said. 





against IBM in March, it could 
still go after Linux users. 
“There will most likely be 
some kind of lawsuit,” Stowell 
said. “I don’t think that SCO 
is completely dependent on 
the SCO/IBM case to prove 
that Unix [code] is in Linux.” 
SCO alleged in the March 
lawsuit that IBM illegally 
incorporated some of SCO’s 


| Unix System V code into Lin- 


ux. Last month, IBM filed a 
patent infringement counter- 
suit against SCO and chal- 
lenged its legal standing to sue 
other companies over their 
use of Linux. 

Dan Kusnetzky, an analyst 
at IDC in Framingham, Mass., 
noted that SCO’s assertions 
haven't been proved in court. 
It isn’t clear that SCO owns 
any of the code “that’s inside a 





typical Linux box,” Kusnetzky 
said. “There’s so much in ques- 
tion that it wouldn’t be reason- 
able or prudent for a company 
to give money to The SCO 
Group until this is settled.” 

At the SCO Forum confer- 
ence in Las Vegas last month, 
company President and CEO 
Darl McBride was asked if 
he would consider creating 
an escrow account to reassure 
potential licensees that the 
Linux-related fees would be 
refunded if a court ruled 
that SCO wasn’t entitled to 
them. “We haven’t built that 
in,” he said. D 


READ MORE ONLINE 


For full coverage of the SCO/Linux 
controversy, go to our Web site: 


QuickLink a3260 
www.computerworld.com 
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their lifetime value and achieve greater competitive 
advantage. To find out how leading companies are 
reaping the rewards of SAS customer intelligence 
software, call 1 866 270 5723 or visit our Web site. 


www.sas.com/customer 
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NEWS 


Pentagon Awards Contracts to 
Rebuild Iraq’s Communications 


Satellite systems, mobile technology 
will connect administrative offices 





BY BOB BREWIN 
HE U.S. DEPARTMENT 
of Defense last week 


confirmed that it and | 


the U.S.-run provi- 

sional government in Iraq 
have awarded a series of con- 
tracts worth a total of more 
than $100 million in an effort 
to jump-start the rebuilding of 
the war-torn country’s com- 
munications infrastructure. 

The contracts, some of 
which have yet to be publicly 
announced, also include ones 
issued by San Francisco-based 
Bechtel Corp., the lead con- 
tractor on the overall recon- 
struction program in Iraq. 

For example, Bechtel late 
last month announced a 
$25 million deal under which i 
plans to buy 13 central-office 
switches and fiber-optic net- 
working equipment from Lu- 
cent Technologies Inc. in Mur- 
ray Hill, NJ., for use in upgrad- 
ing the Iraqi phone system. 


‘Essential’ Capabilities 

At a conference on Iraq Aug. 
29 in Arlington, Va., Linton 
Wells, principal assistant sec- 
retary of defense for networks 
and information integration, 
described the development of 
improved telecommunica- 
tions capabilities as being “ab- 
solutely essential” to the ef- 
forts of the Coalition Provi- 
sional Authority to ensure se- 
curity and restore essential 
services in Iraq. 

Wells outlined in his speech 
a variety of projects designed 
to ensure that CPA offices 
throughout Iraq can commu- 
nicate with one another. 

For example, a mobile com- 
munications system made by 
Lexington, Mass.-based 
Raytheon Co. will be used to 
provide data and voice net- 
working services from the 
CPA's headquarters in Bagh- 
dad to three regional offices. 





Patricia Perlini, a Raytheon 


: 
| spokeswoman, said the system 


will be based on the compa- 
ny’s First Responder technol- 
ogy, which was initially devel- 


oped for homeland security 


uses in the U.S. 

Perlini said she didn’t have 
permission from the Pentagon 
io discuss the system in more 
detail or to disclose the con- 
tract’s value. 

But according to infor- 
mation on Raytheon’s Web 
site, First Responder is a 
vehicle-mounted integrat- 
ed communications sys- 
tem that provides cellular, 
satellite and Wi-Fi wire- 
less LAN links. 





The Defense Department 
and the CPA have also tapped 
Herndon, Va.-based Northrop 
Grumman Corp. to provide 
“Internet in a box” systems 
that can deliver satellite-based 
Internet connectivity to the 
authority’s regional headquar- 
RAYTHEON’S FIRST RESPONDER 
system supports multiple communi- 
cations technologies and is mount- 
ed on vehicles such as this one. 


Bank Takes Hybrid Route 
On New Telephony System 


Alcatel switches 
support mixed 
IPcircuit approach 


| BY MATT HAMBLEN 


Brown Brothers Harriman & 
Co. last week said it has com- 
pleted a three-year project to 
install IP telephony systems at 
several of its U.S. offices. But 
the New York-based banking 
and investment management 
firm isn’t moving away from 
circuit-switched call-routing 
technology altogether. 

BBH is using four of Alcatel 
SA’s OmniPCX Enterprise IP- 
PBX voice switches at offices 
in Boston, New York and Jer- 
sey City, NJ. Paris-based Alca- 
tel wasn’t well known in the 
U.S. when it was picked for 
the project in December 1999, 
But BBH officials preferred 
the OmniPCX technology be- 
cause it was less expensive 
than rival products and could 
handle voice communications 





in either a circuit-switched or 
IP-based mode, said Paul Dia- 
mond, senior vice president 
of enterprise communications 
at BBH. 

Telephone calls that can’t be 
transmitted via BBH’s IP net- 
work because of heavy data 
traffic are converted to cir- 
cuit-switched routing by the 
Alcatel devices. “It’s a stable 


| and sophisticated switch, and 


since we’re a financial institu- 


| tion, we need dial tone consis- 


tently,” Diamond said. 


Common Path 
Brian Riggs, an analyst at Cur- 
rent Analysis Inc. in Sterling, 
Va., said many other compa- 
nies are following the same 
partial migration route that 
BBH took instead of jumping 
completely into IP-only voice 
networking [QuickLink 38056]. 
“The real world is saying we 
won't be pure IP, and many 
companies find it more com- 
fortable to be circuit-switched 


| ters throughout Iraq. Wells 
said the CPA has already in- 
stalled seven of the 25 planned 
systems. 

Northrop Grumman spokes- 
woman Janis Lamar said she 
couldn’t provide details about 
the technology or the contract 
because she hadn’t received 
clearance to do so from the 
U.S. Central Command. 

Warren Suss, an analyst at 
Suss Consulting Inc. in Jenk- 
intown, Pa., who follows fed- 
eral contracts, described 
the Raytheon and Northrop 
Grumman systems as “quasi- 

military” in nature and 
said they should be 
well suited to the chal- 
lenge of trying to pro- 
vide communications 
capabilities in a coun- 
try like Iraq. 





as well as IP-enabled,” added 
Elizabeth Herrell, an analyst at 
Forrester Research Inc. in 
Cambridge, Mass. 

The telephony project cost 
BBH $2.5 million and affects 
the voice systems used by 
nearly 3,000 brokers and 
other financial services per- 
sonnel. BBH did a phased roll- 
out and has already saved 
$200,000 in annual costs by 
eliminating voice-only net- 
work pipes and using its IP 
network to run core voice ap- 


TECHNOLOGY DETAILS 


Supports up to 
50,000 end users 


Is available in rack- 
mounted or full-size 
cabinet configurations 


Works with Unix and 
Linux systems 


Includes a SQL database 


Starting prices range from 
$332 to $501 per user. 
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In addition to the agree- 
ment it signed with Lucent, 
Bechtel has awarded a con- 
tract to Fairfax, Va.-based 
Verestar Inc. for develop- 
ment of an emergency satel- 
lite communications system 
and a separate contract to 
Hauppauge, N.-Y.-based 
Globecomm Systems Inc. 
for an international satellite 
gateway. Wells estimated the 
value of those two deals at 
$45 million. 

Meanwhile, the Defense In- 
formation Systems Agency, 
the Pentagon’s in-house sys- 
tems integrator, has set up a 
technical support manage- 
ment office in Iraq that will 
provide various IT services to 
the CPA. 

As part of that effort, the 
agency awarded a contract 
worth $36.4 million to Science 
Applications International 
Corp. in San Diego to handle 
command-and-control and 
communications services, plus 
two smaller telecommunica- 
tions-related contracts. D 


plications, Diamond said. 

Additional benefits include 
the ability to convert BBH’s 
Alcatel 4035 digital phones to 
IP phones by adding an inex- 
pensive snap-on hub to the 
bottom of each device. That 
alone saved Diamond about 
$300 per phone compared 
with what it would have cost 
him to buy new ones from an- 
other vendor. 

Diamond said BBH is also 
using the hybrid network to 
run a new IP-based voice-mail 
application and several call 
center applications and is inte- 
grating it with a voice record- 
ing system developed by the 
New York Stock Exchange to 
meet a federal requirement 
that verbal stock trades be 
recorded. 

But Diamond is reluctant to 
roll out IP telephony capabili- 
ties to BBH offices worldwide 
because of a lack of open stan- 
dards and the difficulty of get- 
ting products that the compa- 
ny has bought from different 
vendors to interoperate. 

“I await with open arms the 
integration resolution,” Dia- 
mond said. D 





lronic how it takes the cutting edge 
technology of 2003 to access the 
cutting edge technology of 1973. 


myEXTRA!™ Smart Connectors let you leverage your existing legacy data ana logic 
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that do what they say they will do. This is what 
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XML-based Web services — they let you get at legacy 
information without changing host applications. 
You can put all of the business data and applica- 
tions locked up in mainframes to new use in hours 
or days, not weeks or months. We've spent the last 
18 years making legacy data more useful. Smart 
Connectors are the logical next step, making data 
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Gateway Cutting 
Manufacturing Jobs 


Gateway Inc. will close its manu- 
facturing plant in Hampton, Va., 
and cut jobs at its two South 
Dakota plants, the Poway, Calif.- 
based company said last week. 
Those manufacturing jobs will be 
handled by outside companies 
and other Gateway locations, offi- 
cials said, noting that about 450 
employees in Hampton will lose 
their jobs. 


EDS Lands Deal 
With State Dept. 


Electronic Data Systems Corp. in 
Plano, Texas, last week said it 
signed a deal to take operational 
responsibility for the domestic 
telecommunications system of the 
U.S. Department of State. The 
value of the award wasn’t re- 
leased. WorldCom Inc. said the 
EDS deal doesn’t affect the 10- 
year, $360 million contract it 
signed with the State Department 
in December 2002. 


New Siebel Apps 
Map Performance 


San Mateo, Calif.-based Siebel 
Systems Inc. this week is expect- 
ed to announce call center and 
sales personnel performance 
management software. The appli- 
cations will enable companies to 
measure customer-facing em- 
ployee performance and commu- 
nicate corporate goals, among 
other functions. The Siebel Sales 
and Call Center Performance 
Solutions products are available 
now. Pricing wasn’t disclosed. 


Short Takes 


VERIZON WIRELESS signed a 

$1 billion deal with NORTEL NET- 
WORKS LTD. for wireless infra- 
structure technology. . . . STRATUS 
TECHNOLOGIES INC. in Maynard, 
Mass., said Windows Server 2003 
Enterprise Edition is available on 
its fault-tolerant servers, including 
the ftServer 5600 and 6600 sys- 
tems being announced today. 
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PeopleSoft Moves to 
Mix Apps After Merger 


Says it will maintain J.D. Edwards’ 
products and blend software features 





BY MARC L. SONGINI 
EOPLESOFT INC. last 
week disclosed the 
initial details of its 
plan for integrating its 

products and operations with 

those of onetime rival J.D. Ed- 
wards & Co., saying that links 
between the two vendors’ 
business applications will be 
made available starting in the 
fourth quarter. 

Executives from Pleasanton, 
Calif.-based PeopleSoft said at 
a meeting with financial ana- 
lysts in New York that the 
company plans to maintain 
three separate lines of soft- 
ware: PeopleSoft World, which 
will consist of J.D. Edwards’ 
green-screen applications for 
IBM AS/400 systems; People- 
Soft EnterpriseOne, a midmar- 
ket offering built around the 
newer J.D. Edwards 5 software; 
and PeopleSoft Enterprise, a 
high-end suite that gives a new 
name to PeopleSoft 8. 

PeopleSoft, which is still 


trying to fight off a hostile 
takeover bid by Oracle Corp., 
completed its acquisition of 
Denver-based J.D. Edwards 
late last month. The company 
plans to continue developing 
all of the products from both 
companies, said PeopleSoft 
CEO Craig Conway. “This was 
never intended as a consolida- 
tion play,” he added. 


A Blended Approach 


But Ram Gupta, PeopleSoft’s 
executive vice president of 
products and technology, said 
there will be some blending of 
applications. For instance, J.D. 
Edwards’ CRM applications 
will be able to exploit People- 
Soft’s call center software, 
Gupta said. In addition, hooks 
to several of J.D. Edwards’ 
application modules are be- 
ing built into PeopleSoft 
Enterprise. 

Gupta said the application 
integration is being done 
through PeopleSoft’s App- 





Development Bs 


Connect middleware and inte- 
gration broker technology, 
along with data-sharing and 
Web portal publishing capabil- 
ities that were developed by 
J.D. Edwards. More detailed 
product information is due to 
be released next week at Peo- 
pleSoft’s Connect 2003 user 
conference in Anaheim, Calif. 
Mark Federle, CIO at The 
Weitz Co., a Des Moines, Iowa- 
based construction contractor, 
said he’s looking forward to 
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hearing about PeopleSoft’s 
plans at the conference. But 
Federle added that he was glad 
to hear of PeopleSoft’s com- 
mitment to maintaining J.D. 
Edwards’ software and to up- 
grading the applications 
through the integration plan. 
Weitz uses J.D. Edwards’ 
OneWorld XE suite, a prede- 
cessor to J.D. Edwards 5. 

Although PeopleSoft is 
showing good initial progress 
in the application integration 
effort, “we have to wait and 
see the practical actions,” said 
Irving Tyler, CIO at Quaker 
Chemical Corp. in Consho- 
hocken, Pa. Quaker also uses 
OneWorld XE. 

Kevin Parker, PeopleSoft’s 
chief financial officer, said 
the combined company plans 
to reduce its 13,000-employee 
workforce by up to 1,000 peo- 
ple, with most of the layoffs 
affecting marketing and mid- 
dle management jobs. There 
won't be any cutbacks in re- 
search and development or 
among quota-carrying sales 
and consulting personnel, 
he said. B 


ORACLE'S PROMISE 


Oracle officials reiterated a pledge to 

maintain PeopleSoft's applications if 

the company's buyout bid succeeds: 
QuickLink 41063 
www.computerworld.com 





SAP Pushes to Increase 
Use of Its Middleware 


Online community, 
tools upgrade aim 
to boc boost NetWeaver 


BY MARC L. SONGINI 
Looking to lure more software 
vendors and corporate devel- 
opers to use its NetWeaver ap- 
plication integration technolo- 
gy, SAP AG this week plans to 
announce upgraded program- 
ming tools and the creation of 
a virtual community that will 
let users exchange advice and 
other information. 

The business applications 
vendor is due to make the an- 
nouncements at its TechEd ’03 
developers conference in Las 


| Vegas. SAP officials were 
sketchy on the details last 
week but said the company 
will push hard to show corpo- 
rate users and business part- 
ners how they can 
exploit NetWeaver 
to link SAP appli- 
cations with third- 
party products and 
homegrown software. 
NetWeaver was introduced 
in January as the latest version 
of integration software that 
SAP originally rolled out in 
2001 under the name mySAP 
Technology [QuickLink 35721]. 
The NetWeaver tools can sup- 
port Java and Microsoft .Net 
applications, as well as code 
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written in SAP’s proprietary 
ABAP programming language. 

Eric Bloom, vice president 
of IT at Endo Pharmaceuticals 
Inc. in Chadds Ford, Pa., said 
NetWeaver isn’t of much in- 
terest to him at this point be- 
cause of the relatively small 
size of his company. He added 
that on the surface, NetWeaver 
appears to be just a 
renamed version of 
SAP’s older integra- 
tion tool set. 

SAP plans to re- 
lease the enhanced NetWeaver 
programming tools and start 
up the online community for 
developers within the next 12 
months, said William Wohl, a 
spokesman for the vendor’s 
SAP America Inc. subsidiary 
in Newtown Square, Pa. He 
added that the online commu- 
nity will include educational 





Web sites, chat rooms and dis- 
cussion forums where devel- 
opers can get tips on how to 
maintain or expand their SAP 
installations. 

The addition of the online 
community is a necessary 
step for SAP, even if the com- 
pany doesn’t reap an immedi- 
ate return on its investment, 
said David Dobrin, an analyst 
at B2B Analysts Inc. in Cam- 
bridge, Mass. He pointed 
out that Java has succeeded 
partly because it has such 
communities, where devel- 
opers can trade notes and 
share code. 

But “it will take real grit for 
[SAP] to decide to put in the 
resources that are required to 
make this successful,” Dobrin 
said, referring to both the pro- 
gramming tools upgrade and 
the online community plan. b 





www.computerworld.com 


NEWS 





Online Tech Job Postings Increase, but 
IT Execs Don’t Expect a Jump in Hiring 


Staffing levels 
likely to remain at 
status quo in Q4 


BY THOMAS HOFFMAN 
There are some signs that the 
IT labor market may finally be 
picking up some steam. But 
corporate technology execu- 
tives and industry analysts last 
week said most companies are 
likely to maintain IT staffing 
at or near current levels for 
the foreseeable future. 

On the plus side, since Janu- 
ary New York-based Dice Inc. 
has seen a 35% increase in the 
number of jobs listed through 
its online recruiting service 
for IT professionals. The total 
number of available positions 
has risen from roughly 20,000 
to 27,000, said Scot Melland, 
Dice’s president and CEO. He 
noted that the increase may be 
partly tied to companies using 
funds left in their annual IT 
budgets to buy new servers 
and upgrade their IT infra- 
structures. 

Demand for contract and 
temporary workers has also 
been on the rise, Melland said. 
“That's usually a precursor to 
full-time hiring — at least it 
has been for the last two or 
three recessions,” he noted. 

Maria Schafer, an analyst at 
Meta Group Inc. in Stamford, 
Conn., said she is starting to 
see “a little bit of movement in 
hiring.” She pointed to indica- 


Pee ecreesessccsesesseseseeesese 


Correction 

A story in the Sept. 1 News sec- 
tion (“Dell to Release Network 
Management Software”) incor- 
rectly stated that Dell Inc. has 
sold about 50,000 of its Power- 
Connect switches since the de- 
vices were introduced two years 
ago. Dell actually has about 
50,000 PowerConnect cus- 
tomers. The company declined 
to disclose the total number of 
switches that those users have 
bought. 








tors — mostly in- 
creasing headhunter 
activity — that IT job 
demand may pick up 
in the first quarter of 
2004. But, she added, 
“we're still pretty 
much in a wait-and- 
see mode.” 

That maps with 
survey results re- 
leased late last month by 
Robert Half Technology in 
Menlo Park, Calif. Eighty-three 
percent of the 1,400 CIOs who 
responded said they don’t plan 
to change their IT staffing lev- 
els during this year’s fourth 
quarter [QuickLink 40966]. 

IT managers at companies 
such as San Francisco-based 


\ 


Ree Ey Co 
will hire one or two 
Rog es oer Se 


retailer DFS Group 
Ltd. and Muscatine, 
Iowa-based HON 
Industries Inc. last 
week said they 
expect their technol- 
ogy staffs to remain 
constant for now. 
“We have not laid 
off through this 
downturn, and we do 
not plan to start now,” said 
Malcolm Fields, CIO at HON 
Industries, a maker of office 
furniture and fireplaces. But 
Fields also isn’t looking to 


| augment his IT staff with new 


hires. “It is status quo for us,” 
he said. 
Others plan to add a small 


| number of new workers. IT 
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staffing at Drexel University in 
Philadelphia isn’t expected to 
grow significantly during the 
fourth quarter, said John Bielec, 
vice president of information 
resources and technology. But 
Bielec does intend to hire one 
or two security specialists to 
manage Drexel’s desktop fire- 
wall technology and install se- 
curity updates on its systems. 
Robb Good, vice president 
and director of information 
systems at Sundt Construc- 
tion Inc. in Phoenix, said he 
plans to hire an entry-level 
Java programmer sometime in 
the next six months. Good 
created the opening for a pro- 
grammer by eliminating a 
training specialist’s position 





as part of a slight restructur- 
ing of Sundt’s IT department 


earlier in the summer. 
| 


“Our strategy has been to 
develop more internal Web 
services applications and 
move away from specialized 
vertical market applications,” 
said Good. Sundt’s business 


| hasn’t been significantly af- 
| fected by the weak economy, 
| and Good said the company 
| has had low turnover and no 


major IT staff reductions for 
the past seven years. He added 
that he doesn’t expect any sig- 
nificant workforce changes, 
up or down, “for at least the 
next three years.” 

Melland said the jobs in 
greatest demand through 
Dice’s Web site are program- 


ming positions for languages 
| s . 
such as C++ and Java, especial- 


ly at federal agencies and with 


| government contractors that 
| are seeking workers with high- 


level security clearances. D 





HP Broadens its Support 


For Grid Computing Apps 


Will ‘grid-enable 
everything,’ offer 


consulting help 


BY MATT HAMBLEN 
Hewlett-Packard Co. last week 
took two more steps to extend 
its Adaptive Enterprise com- 
puting strategy, announcing 
plans to buy a vendor of Web 
services management tools 


and to support grid computing | 
related technologies. 


capabilities across all of its 
products for corporate users. 
Adaptive Enterprise is a set 
of technology offerings de- 
signed to help IT managers 
build systems that can easily 
be modified as business needs 
change — an autonomic com- 
puting capability that is also 
being developed by rival ven- 
dors like IBM and Computer 
Associates International Inc. 
To further its initiative, HP 
will “grid-enable everything 
we sell,” from handheld com- 
puters to the largest servers 
and storage systems, said Nick 
van der Zweep, the company’s 
director of utility computing. 





Grid computing lets users 


| run applications across large 
| numbers of relatively inexpen- 


sive systems. Van der Zweep 
said HP is integrating support 


| for grid computing standards 


and setting up a team within 


| its consulting organization to 


manage and support grid im- 


| plementations (see chart). 
| No timeline was announced, 


although HP noted that it al- 
eady offers several grid- 


HP also said it has signed 


| an agreement to acquire San 


Francisco-based Talking 
Blocks Inc., a small company 
that sells software for manag- 
ing Web services and integrat- 


| ing disparate systems both in- 


ternally and between business 
partners. The financial terms 
of the deal won't be disclosed 
until the acquisition closes lat- 
er this month, said Nora Den- 
zel, senior vice president of 
HP’s software business unit. 
The two announcements 

were welcomed by some users 
of HP’s OpenView enterprise 


| management software. But 


_ Computing Plan 


| management analyst at Best 


| View products to manage 





HP’s Grid 


® Support for standards, such 
as the Globus Toolkit and the 
Open Grid Services Architecture, 
is being built into all of HP’s en- 
terprise computing products. 


& The company is offering new 
consulting, deployment and 
support services for grid 
computing installations. 

= HP is adding capabilities for 
controlling the IT resources 
used in grid and Web services 
applications to its OpenView 
management software. 


several said they’re uncertain 
about how the new develop- 
ments will affect them. 

Jason Kennedy, a systems 





Buy Canada Ltd. in Burnaby, 
British Columbia, said the re- 
tailer is installing HP Open- 


more than 100 Unix and Win- 
dows servers at its data center. | 
Kennedy added that he’s inter- 
ested in grid computing’s po- 
tential, although he’s not likely 
to adopt it any time soon. 
“Sharing resources is the 
point of the adaptive manage- 





| ment approach, and that’s 


where I’m moving my compa- 
ny,” Kennedy said. And being 


| able to make systems respon- 


sive to changing business 
needs would be a “huge bonus” 


| for Best Buy Canada, he added. 


For now, though, grid comput- 
ing is just “pie in the sky and 
something nice to read about.” 
Stephen Elliot, an analyst at 
IDC in Framingham, Mass., 
said it’s a positive develop- 
ment that HP, Oracle Corp. 
and other vendors are step- 


| ping forward and announcing 


grid computing strategies. 


| However, Elliot added that 


most IT managers have more 
practical concerns to worry 


| about for at least the next year. 


“Grid is in the early stages 
of adoption,” said Audrey Ras- 
mussen, an analyst at Enter- 
prise Management Associates 
Inc. in Boulder, Colo. “HP’s 
grid announcement shows 


| they are looking to the future, 
| although the concept hasn’t 


taken off in the market.” D 


DATABASE DETAILS 


Oracle discloses more of the features that 


| will be part of a grid-enabled database 


upgrade being announced today 


QuickLink 41075 
www.computerworld.com 
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Judge Dismisses 
Software Patent Suit 


A federal judge in California dis- 
missed a lawsuit in which Busi- 
ness Objects SA claimed that data 
analysis software vendor Micro- 
Strategy Inc. in McLean, Va., had 
infringed on a U.S. patent involv- 
ing relational database access 
technology. The judge ruled that 
the claims were legally and factu- 
ally unsupported. France-based 
Business Objects said it’s consid- 
ering an appeal. 


ENRORDN 


Outsourcing Suffers 
From Poor Relations 


Most companies are unprepared 
to properly manage the outsourc- 
ing vendors they hire and closely 
monitor their work, according to 
Gartner Inc. The research firm 
forecasts that by 2005, 70% of 
companies will use more than 
three IT service providers for key 
projects but that less than 10% of 
those will be prepared to effec- 
tively manage the outsourcers. 


Rad CME 


Virginia Tech Picks 
Apple for Cluster 


Virginia Polytechnic Institute and 
State University plans to build an 
InfiniBand cluster using Apple 
Computer Inc.’s new dual-proces- 
sor Power Macintosh computer 


cluster of 1,100 nodes is expected 
to rank among the most powerful 
in the world, Virginia Tech said. 
The Blacksburg-based university 
has been working with Apple for 
several months to adapt the new 
Power Macintosh for its cluster. 


Short Takes 


CARGILL INC. selected ALTIRIS 
INC.’s IT life-cycle management 
software to manage its IT assets, 
including 27,000 PCs and 500 
servers. . . . HITACHI LTD. said it 
has developed a radio frequency 
identification chip that requires no 
external antenna and makes pos- 
sible the embedding of tracking 
and identification chips in bank 
notes and other paper products. 








| Continued from page 1 


Interland 


problem on Aug. 28 when cus- 
tomers called to complain of 


| service disruptions, according 
| to Reich. What started as a 


small-scale problem quickly 
became a large-scale event, he 


| said, declining to specify how 
| many sites may have been af- 


fected. He said he believes 
that by Sept. 4, the problem 
was no longer affecting cus- 


| tomers. 


“I can definitely say it was 


| an administrative error that al- 


lowed this to occur,” Reich 
said, without elaborating. 


| “From a customer perspective, 
| we don’t see this as being 

| caused by any inherent prob- 

| lem” with the products or ser- 
| vices Interland uses, he added. 


“We had problems with the 
Web site,” said Tony Johnson, 


| webmaster at Trinidadexpress.- 


com, an online newspaper 


| hosted by Interland that cov- 
| ers Trinidad and Tobago and 


BY TODD R. WEISS 
Three months after Cable & 


| Wireless PLC disclosed plans 
| to exit the U.S Web hosting 


market, its U.S. unit today is 
due to announce a “business- 


| ready” hosting service to try 
with the 64-bit G5 processor. The | 


to shore up its customer base 
for potential buyers. 

The new enterprise hosting 
package includes collocation 


| data center services as well as 


connectivity, security, and 
data backup and restoration 


| capabilities, said Jason Weis- 
| berger, vice president of prod- 


comers | 


uct management and partner 


| development at C&W’s U.S. 


division in San Francisco. It 
will also gather all of C&W’s 
primary services into one bun- 


| dle for the first time, he said. 


This week’s announcement 
is in sharp contrast to the U.S. 
pullout plan that C&W set in 
June, when the London-based 


| company said it was losing 


$1 million per day here [Quick- 
Link 38994]. C&W, which in 


NEWS 


is based in Port of Spain. 
“We've had our servers at In- 
terland needing rebooting 
manually” due to their inac- 
cessibility through Microsoft 
| Corp.’s Windows Terminal 

| Server, Johnson said in an 

| e-mail. Although Interland 
posted information about 
some sites experiencing prob- 
lems, it hasn’t explained what 
might have caused them, he 
added. 

As many as 5,000 sites per 
day may have been infected 
before Interland had a chance 
to fix the problem, said Joe 
Stewart, a senior security re- 
searcher at Lurhg Corp., a 
managed security services 
provider in Chicago. Lurhq be- 
gan tracking the problem Aug. 


fic on newslists about service 
disruptions for sites being 
hosted by Interland. 
According to Stewart, the 
HTML code that was append- 
ed to the footers contained 
| instructions that would cause 
an executable program to be 





C&W Offers New Hosting 
Service Despite Exit Plan 


| November had narrowed its 
focus in the U.S. to large mul- 
tinational companies, contin- 
| ues to seek a buyer for its re- 
| maining operations. 

When asked how C&W offi- 
cials expect corporate users to 
react to the new service in 
light of the sell-off plans, Weis- 
berger said, “We’ll see how 


Agrees to buy most of 
bankrupt hosting vendor 
Exodus Communications’ 

operations for $575M. 


2001 


Says it will close almost 
half of its U.S. data centers 
and narrow its focus to 
U.S.-based multinationals. 





28 when it began noticing traf- | 
| net Explorer browser [Quick- 








2002 


alae Sisal) 


How It Worked 


= Malicious HTML code on 
Interland-hosted Web sites 
disrupted service. 


w The code contained instruc- 
tions for downloading an 
executable program onto 
vulnerable systems of users 
who visited infected sites. 


= The malicious program then 
downloaded proxy servers 
onto infected systems. 


downloaded from another lo- 


| cation to vulnerable systems 
| belonging to those who visited 


the infected sites. The code 
took advantage of a flaw, dis- 
closed on Aug. 20, in several 
versions of Microsoft’s Inter- 


Link a3620]. 
Once installed on a victim’s 


| system, the program would 


then proceed to download a 
proxy server onto it, Stewart 


| said. The proxy server allowed 
hackers to hide behind inno- 


people will respond to it. Right 
now, we're not concerned.” 
Adam Lavine, CEO of wire- 
less messaging applications 
vendor FunMail Inc. in Pleas- 
anton, Calif., has been a C&W 
customer since 2000 and said 
he has already signed on to 
buy the services bundle to get 
all the hosting capabilities he 


| needs under one contract. 


“We were willing to give 
them a try,” Lavine said. Thus 
far, C&W’s plans haven’t nega- 
tively affected either the cus- 


C&W’s Hosting Moves in the U.S. 


Announces plans to com- 

pletely withdraw from the 

U.S. market and try to sell 
off those operations. 


ty 


2003 


To keep users in the fold 
while it seeks a buyer, 
C&W announces a new 

bundled hosting service. 
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cent third parties when engag- 
ing in illegal activities such as 
identity theft, he said. 

The owner of the site from 
which the executable program 
was downloaded had a 
Ukrainian address and runs a 
site that trades stolen credit 
card information, Stewart said. 

In addition, the Houston- 
based location from which the 
proxy server is downloaded 
has been associated with a 
Trojan horse program known 
as MigMaf, Stewart added. 
MigMaf enables infected sys- 
tems to retrieve porn ads from 
adult sites. 

“Hosting companies get de- 
faced all the time. This time, it 
appears Interland got defaced 
with malicious code,” Stewart 
said. 

Reich said that the company 
had “heard anecdotes” about 
users being redirected to sites 
that downloaded malicious 
code, as described by Stewart. 
But no actual instances have 
been reported to the company, 
he said. D 


tomer service or the network 
reliability it provides to Fun- 
Mail. “I would have to think 
they’re motivated to do a good 
job here,” Lavine noted. 

The new services bundle 
could help C&W retain cus- 
tomers while it tries to find a 
buyer for its U.S. operations, 


| said Melanie Posey, an analyst 


at IDC in Framingham, Mass. 
“They kind of have to main- 
tain the business they have in 
order to eventually sell it to 
somebody else,” she said. 

But Laurie McCabe, an ana- 
lyst at Summit Strategies Inc. 
in Boston, said C&W is in dan- 
ger of sending potential custo- 
mers mixed messages. “It’s not 
that hard to find a hosting pro- 
vider with similar services, so 
why would you go with some- 
one who’s waffling?” she said. 
“You want to feel like the ven- 
dor is in it for the long haul.” 

Laurie Probst, vice presi- 
dent of marketing in the U.S. 
at C&W, confirmed that the 
new services are designed to 
beef up its customer base to 
entice buyers. “It’s our job to 
retain the value of this compa- 
ny,” she said. D 
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EMC Celerra 

EMC Centera 

EMC Symmetrix DMX Series 

Google Search Appliance 

HP Business Critical Servers 
Hummingbird Portal 

1BM eServers 

Interwoven TeamSite’ Content Server 
Lawson Enterprise Knowledge Management 
Microsoft Office Systems 

Netegrity SiteMinder 

Novell NetWare 

Livelink” Enterprise Suite 

Oracle Business Intelligence Solutions 
Enterprise Web Suite 

RSA Ciear Trust” 

RSA SecurlD” 

mySAP Business Intelligence 

SAP NetWeaver 

Tamino XML Server 

Stellent “ Content Management 
Stratity Discovery System 

Symantec * Client Security 

TIBCO ActivePortal 

£57000 Servers 

Vignette” Busiriess Integration Studio 
BusinessWare” 
Yahoo! Search Engine 








appication 

















ORACLE 


www.oracle.com 


-y SAS. 


WWW.Sas.cOmM 


Sponsors 


nen gues 
SOFTWARE 


@ SYBASE 





EDS 
EMC 
Hewlett Packard 

[BM 

IBM Global Services 
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Accenture 

Actuate 

Applix 

BearingPoint 

Brio Software 

Business Objects 

Cap Gemini Ernst & Young 
Cognos 

Computer Associates International 
Deloitte Consulting 

Fair Isaac 

Hyperion 
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IBM Global Services 
Informatica 

Lawson 

Microsoft 

MicroStrategy 

Oracle 
PriceWaterhouseCoopers (IBM) 
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Managing and Enhancing 


BI Applications and Infrastruct 


Processes: 
¢ Support BI applications by providing maintenanct 
services, security, disaster recovery and training 
¢ Implement help-desk procedures for the BI envirc 
* Consider outsourcing to improve ROI 
* Identify current system deficiencies and future ne 
improving the BI environment 
Product and Service Categories with Functions 
° Training 
¢ Systems usage and performance monitoring 
* Security and disaster recovery management 
¢ Capacity and performance management 
¢ Help-desk support 
¢ Outsourcing 





PRODUCT NAME 


Services 

Actuate 

Applix TM 

Services 

Brio Metrics Builder’ 

BusinessObjects Enterprise 6 

Services 

Cognos® PowerPlay 

CleverPath Aion Business Rules Expert 
Services 

Fair, Isaac Business Science” 

Hyperion Essbase XTD Analytic Services 
DB2 Intelligent Miner™ for Data 
Services 

Informatica PowerAnalyzer"™ 

Lawson Enterprise Performance Management Suite 
Microsoft Analysis Services 
MicroStrategy 

Oracle Business Intelligence Solutions 
Services 

ProClarity’ Analytics Platform 

mySAP Business Intelligence 

SAS" Analytics 

SAS® Enterprise Business Intelligence Server 
Clementine” 

SPSS Predictive Marketing” 

iAnywhere Solutions 









* Security and network requirements and evaluation of 
existing/future implementations 

* Search capabilities for structured and unstructured data 

Collaboration through enterprise portals and content 

& knowledge management 

apacity and application performance planning 


and competitors 

analysis to articulate tangible benefits 
balanced scorecards to determine ROI 
process flows, business requirements, budgetary 


i risk mitigation plans = ai 


‘De igning, Building and Managing ™ 
Historical and Operational Informations 


Stores 


Processes: 

¢ Determine data requirements of knowledge workers and 
decision makers 

¢ Perform information and data modeling 















E 


























A: 


information Retrieval and Reporting 














* Construct meta data repository . 
ructure ¢ Extract, cleanse, transform and load data into informational by Leveraging Off-the-Shelf 
data stores Enterprise Software 
enance * Create basic queries and reports Proceuiae 
aining * Manage and enhance historical and operational information stores eget , . ‘ 
\ environsnent * Identify the querying and reporting functions available in the 














Product and Service Categories with Functions: 
¢ Database management systems 


operational systems currently deployed in the enterprise 
¢ Identify and evaluate BI products that provide out-of-the- 
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* Information and data modeling box business analytics 
ce ke Meta data repository management ; * Design and implement BI applications to achieve objec- 

Ctions: weextract, cleanse, Transform, Load (ETL) capabilities tives for actionable decision making 

. pOLAP cubes Product and Service Categories with Functions: 

nt o ¢ BI querying and reporting 
° ERP 
¢ CRM 
° SCM 






¢ eCommerce 











Data Visualization, Prediction and 
Presentation by Leveraging 


Customized Solutions 


Processes: 
¢ Evaluate the needs for customization 
* Develop BI applications: OLAP, mobile, business analytics 
and data mining 
* Evaluate progress against balanced scorecards 
* implement executive dashboards 









dashboards and data mining 
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Actuate Actuate 

Ariba Ariba Analysis 

BEA Systems BEA Liquid Data for WebLogic 

Brio Software Brio Performance Suite “ 

BroadVision BroadVision One-To-One” Business Intelligence 

Cognes Cognos” ReportNet 

Commerce One Commerce One Conductor ) 
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Processes: 
¢ Determine data requirements 
decision makers 
* Perform information and date 
¢ Construct meta data reposito 
¢ Extract, cleanse, transform ai 
data stores 
¢ Create basic queries and rep¢ 
* Manage and enhance historica 
Product and Service Categor 
| * Database management syste: 
| * Information and data modelin 
'* Meta data repository manage 
um Extract, cleanse, Transform, | 
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Managing and Enhancing 


BI Applications and Infrastructure 


Processes: 
¢ Support BI applications by providing maintenance 
services, security, disaster recovery and training 
¢ Implement help-desk procedures for the BI environment 
¢ Consider outsourcing to improve ROI 
* Identify current system deficiencies and future needs for 
improving the Bi environment 
Product and Service Categories with Functions: 
* Training 
¢ Systems usage and performance monitoring 
¢ Security and disaster recovery management 
¢ Capacity and performance management 
* Help-desk support 
¢ Outsourcing 
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Data Visualization 
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° ERP Group | Software DataSigt 
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SCM IBM DB2 UDB Data Warehouse Editions 
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Actuate Actuate KANA KANA iCare Marketing 

Ariba Ariba Analysis™ Manugistics Manugistics SCM 

BEA Systems BEA Liquid Data for Weblogic’ Maximizer Maximizer Enterprise ° CRM 

Brio Software Brio Performance Suite ” Microsoft Microsoft Reporting Services 

BroadVision BroadVision One-To-One” Business Intelligence Onyx Sottware Onyx Enterprise CRM 

Cognos Cognos” ReportNet™ Oracle Oracle E-Business Intelligence 

Commerce One Commerce One Conductor PeopleSoft PeopleSoft 

Computer Associates International CleverPath OLAP Pivotal Pivotal CRM 
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Got Questions About 
Business Intelligence? 


Computerworld’s IT Executive Summit 
Has the Answers 


If you’re an IT executive* in an end-user organiza- New York City ® September 23, 2003 Selected 
3 , k 
tion, apply to attend one of Computerworld’s Hilton New York * 1335 Avenue of the Americas Seeing 
upcoming complimentary one-day summits on mt ' r 


sin In | E 3 4 Turning Information into Insight: 
ta — telligence The Changing Role of Business Intelligence in the Enterprise 


Neither a product nor a system, Business Intelligence ' > ASonts. . Coagies Sites ellinacs ai Gaatasksialee Cciatcimian Cotiabiad 
(Bl) is an architecture — acollection of interrelated Organization to Drive Customer Retention, Loyalty and Profitability 
operational and business performance measurement 


applications and databases. , 
High-Impact Strategies for Delivering Business Intelligence Results 


The only way to succeed with Bi applications is to 
understand their complexity, their cross-organizational 
nature, the needs of knowledge workers, your 
competition, your market, and customer trends. 


Evolving the Enterprise: Leveraging Information for Competitive Gain 


Building Innovation into a Business Intelligence Infrastructure 
, E “ E , Turning a Legal Eye on IT Governance 

This summit will give you a comprehensive, one-day 
overview — and will arm you with the latest thinking 
and tools to make the right investments in BI. 


Regulated IT: Uncle Sam Wants Your Data 


San Francisco * September 25, 2003 


- The Fairmont San Francisco * 950 Mason Street (Nob Hill) 
Complimentary registration ; ; ee 


is restricted to qualified 


IT executives only. Turning Information into Insight: 


The Changing Role of Business Intelligence in the Enterprise 


The User Experience: An In-Depth Case Study 
Thriving in Times of Transition: One CiO’s Perspective 


High-Impact Strategies for Delivering Business Intelligence Results 


Evolving the Enterprise: Leveraging Information for Competitive Gain 


Building Innovation into a Business Intelligence Infrastructure 


Regulated IT: Uncle Sam Wants Your Data 


Apply for registration today 


For more information or to apply, visit www.itexecutivesummit.com/bi 


Exclusively sponsored by 


5Sas._ intel. 


Mee? COMPUTERWORLD 


o°e%e IT Executive Summit 
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White House Taps Energy Dept. ClO to Head E-gov Office 


Private-sector executives express their 
support, optimism for strong leadership 





BY DAN VERTON 
President Bush plans to ap- 
point Karen Evans, CIO at the 
Department of Energy, to be- 
come the new head of the ad- 
ministration’s e-government 
initiatives, the White House 
announced last week. 

Evans, a 20-year veteran of 
the government IT communi- 
ty, will succeed Mark Forman, 


who last month left the post of | 


administrator of the Office of 
Electronic Government at the 
White House’s Office of Man- 
agement and Budget to work 
in the private sector. 


The pending appointment of | 
Evans is getting strong support | 





from private-sector executives. | 


“In the technology arena, 
there are those who get it and 
those who get it done. Karen 
Evans is one of those highly 
valued leaders who possess 
both essential qualities,” said 
Bill Conner, CEO of Entrust 
Inc. in Addison, Texas. “Given 
her experience at the U.S. De- 
partment of Energy and lead- 
ership on the [federal] CIO 
Council, Karen knows first- 
hand what it takes to success- 
fully execute the strategy and 
architecture that she played a 
role in developing with Mark 
Forman and his team, 
said in a statement. 


” Conner 





| ernment’s IT agenda. 


Norm Lorentz, the govern- 
ment’s chief technology offi- 
cer, who took over Forman’s 
post on an interim basis, called 
Evans a “great selection.” 

Lorentz said the quickness 
of the appointment shows that 
the administration under- 
stands the importance of the 
e-government program. 

Jim Kane, CEO of 
McLean, Va.-based 
Federal Sources Inc., 

a research and analy- 
sis firm that focuses 
on the federal IT 
market, said Evans’ 


appointment could 


help advance the gov- 


“Karen is the right 
person in the right 
job at the right time,” 


BCs aay 

ieCwaln rem f 

government IT 
oC eee 


said Kane. “Mark [Forman] was 
the visionary, the change agent. 
But things are now at the stage 
where somebody like Karen, 
who has a strong operational 
perspective, is the right person 
to make things happen.” 

Kane added that having 
Evans in this position is proba- 
bly going to strengthen the po- 
sition of the e-gov- 
ernment administra- 
tor, which is essen- 
tially the de facto 
federal CIO. 

In the early years 
of Forman’s tenure, 
there was tension be- 
tween the CIO Coun- 
cil, on which Evans 
served as co-chair- 
man, and the Office 
of Management and 





www.computerworld.com 


Budget, Kane said. 

In those days, “OMB was a 
bit of a bystander, while the 
CIO Council was setting the 
agenda,” said Kane. 

“Forman, to his credit, was 
marching to the beat of the 
president’s management agen- 
da. But [Evans’] appointment 
can neutralize that tension” by 
bringing her fellow CIOs on 
board with the larger e-gov- 
ernment agenda, he said. 

The timing of the appoint- 
ment coincides with one of 
the most critical spending and 
budgeting times for the gov- 
ernment. Typically, spending 
in September can account for 
as much as 25% of the govern- 
ment’s overall IT budget, be- 
cause agencies must begin 
submitting funding requests 
for new budgets in October 
and must spend any remaining 
IT dollars before they’re lost. D 
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Linux to Play Key Role in Archival 
Database for Moving Images 


IBM to contribute 
pSeries servers 


BY TODD R. WEISS 


Three U.S. universities and the 


Library of Congress are work- 
ing with IBM to develop a Lin- 
ux-based repository of film 
and broadcasting archives. 

In an announcement last 
week, IBM was named the 
lead hardware vendor for the 
database project, which will 
use the company’s eServer 
pSeries servers. 

Jim DeRoest, assistant di- 
rector of computing and com- 
munications at the University 
of Washington in Seattle, 





which is helping to develop 
the database, said the project 
has long been a goal of re- 
searchers and is coming to- 
gether now with help from a 
$900,000 grant from the Na- 
tional Science Foundation. 
The Moving Images Collec- 
tions database and Web portal 
will run on two IBM eServer 
p630 and two eServer p6l0 
servers running SuSE Linux 
and IBM Directory Server. 
The database will run on 
SuSE Linux AG’s Enterprise 


Server 8 on the IBM hardware, 


along with various open- 
source applications used to 
keep costs down, according 
to DeRoest. 


1AM 70 MORE 
PRODUCTIVITY PER EMPLOYEE 
PER DAY. 


1AM A CISCO WIRELESS NETWORK. | HAVE THE POWER TO CONNECT EMPLOYEES TO VITAL DATA WHEREVER THEY ARE. 
AND DO IT SECURELY. THAT SAVES TIME. THAT SAVES MONEY. THAT IS POWERFUL. | AM MORE THAN A CISCO 1200 
SERIES DUAL BAND WI-FI ACCESS POINT. 


The Power-processor-based 


| servers were chosen because 
| they have had good track 


records at each of the partici- 
pating universities. “All of us 
were fairly satisfied with the 
scalability,” he said. Problems 
arise when vendors make 
changes to Intel-based hard- 
ware and Linux doesn’t in- 
clude the new device drivers 
that are needed, DeRoest said. 
But the “consistency of hard- 


| ware” gained by using the 


Power-based pSeries servers 


should solve the problem. 


Barbara Humphrys, who 


| works in the Library of Con- 


gress’ motion picture, broad- 


| cast and recorded sound divi- 





| RES ar cae ear) 


What’s behind the 
database project? 
= Funding: A $900,000 National 
Science Foundation grant 


= Hardware: IBM pSeries Pow- 
ef-processor-equipped servers 


= Software: SuSE Linux and 
other open-source applications 


sion, said the database will 
make it easier for historians 
and researchers to find images 
and films. “We’re kind of start- 
ing at the beginning,” she said. 
“You'd be surprised where 


| some things are held.” 


Once the database is built, 


| administrators can add links 


directly to the content so 


| users can view images and 


movies, Humphrys said. And 


| users who find the images 
| they’re seeking will be able to 
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contact the collection owner 
to obtain usage rights. 

In addition to motion pic- 
tures, TV broadcasts and oth- 
er images, the database will 


| feature archives from the 
| Smithsonian museums. 


The Library of Congress 


| will host the Web site for the 
Moving Images Collections 

| database when it debuts next 
| year. An early version of the 
| Web site is already online 

| [QuickLink 23610). 


Also participating in the 
project are Rutgers University 
Libraries in New Jersey and 
the Georgia Institute of Tech- 


| nology. The University of 
| Washington and Rutgers are 
| designing and developing the 


directory and catalog data- 
bases of digital images, and 


| the Georgia Institute of Tech- 
| nology is developing the Web 
| portal. D 
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Robert H. Dorir 
Robert Dorin, a member of Aberdeen's server team, focus- 
es on server solutions for high-end enterprise applications 
Dorin joined Aberdeen in!996 and has since followed Unix 
and Windows servers and platforms and ERP systems. 
Dorin has an ScB in Applied Mathematics from Brown 
University, an MS in Computer Science from the State 
University of New York at Buffalo, and an MBA from 
Northeastern University. 
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A few minutes with Robert Dorin, 
Vice President, Research 
Enterprise Server Solutions 
Aberdeen Group 


Changing the Economic Equation 


> Do you think “Business Intelligence” for the 
entire enterprise is reality, and why? 


The concept of BI for the enterprise is reality for some 
enterprises, but not for many. Many organizations still ana- 
lyze business data behind closed doors and pass the direc- 
tives down to business managers who understand neither 
the framework of the data that's been examined nor the 
context for the decisions that are being made. Technology is 
available to deliver BI for the enterprise, but each organiza- 
tion must decide how to implement access to data across 
different business units and departments. 


“The ability to react and 
respond os to buying 
patterns and other o er- 
nal events is critical to 
gaining advantage.” 


> What advances are being made within 
organizations to forward decision-making 
at all levels of the organization? 


This relates back to the first question. When different 
departments within an organization are able to work from 
a common data analysis framework—for example, how rev- 
enues, profitability, and other key performance indicators 
(KPIs) are being measured—the potential for accurate and 
consistent decision-making is much greater. BI products 
provide the technology to deliver such a common frame- 
work. 


> Can “Business Intelligence for the Masses” 
create a strategic competitive advantage for 
an organization against its competition? 


Absolutely. The ability to react and respond quickly to buy- 
ing patterns and other external events is critical to gaining 
advantage. Complex data analytics capabilities are valuable, 
but the ability to share the data and the result of the analy- 
sis not only within an organization but also between part- 
ners—for example, a retail outlet and its suppliers—is 
extremely powerful. 


> What has changed from the traditional Data 
Warehousing efforts of the 90s to the 
Business Intelligence projects that are being 
implemented today? (users, cost, applica- 
tion, process) 


Obviously, PCs and Web browser access are more ubiqui- 
tous today than they were even I0 years ago. Data sharing 
enhances the level of cooperation among departments and 
among business partners. While Bl software ranges from 
high-end (i.e., expensive) analytics to less sophisticated 
(Excel-driven) tools, the infrastructure to deliver BI to many 
more users in the enterprise is inexpensive and, in most 
cases, already in place. 


> In today's economy, which businesses or 
business practices have the most to gain 
from Business Intelligence? 


Those businesses that are able to make changes in their 
product marketing quickly and frequently can benefit a 
great deal from BI. Retail businesses such as consumer 
packaged goods manufacturers are constantly making pric- 
ing, packaging, and placement decisions. Banking and finan- 
cial services similarly function in a dynamic and volatile 
environment. With many businesses accessible to their cus- 
tomers online, data can be gathered almost instantaneous- 
ly after implementing a change. BI plays a critical and fun- 
damental role to online services, such as eBay, amazon.com 
and the travel sites. 


For more information, please call 800-874-8647 x385 
or visit www.unisys. com/bi 
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Server Technology. 
Consulting. 


Imagine it: 


Changing the model of the data center to reduce 


complexity. And gaining contro] over costs and 


services for each customer. 


Done: 

JetBlue Airways worked with Unisys to extend 
its standardization on Microsoft® Windows® © 
to the enterprise level. Our experience, support 
and comprehensive services bring mission-critical 


reliability and simplified control with our ES7000 - 


enterprise server. It scales to 32 Intel® Xeon™ 
processors for massive power and efficiency. 


And the money JetBlue saves managing its data 


‘center it puts back-into keeping fares low and 


IS asAtsettion high.-After all, the more 


contro! you have over costs and. complexity, 


‘the more competitive edge you achieve. 


Servers and Services with precision thinking, - 


relentless execution to drive your vision-forward. 


Imagine it. Done. 


unisys.com 1.800.874.8647 x371 
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Appliance Boosts Database Performance 


BY JAMES NICCOLAI 

Oracle Corp. users who run 
complex queries on their data- 
bases but can’t afford the re- 
lated drag in performance may 
find relief in a new product 
due in October from Tel Aviv- 
based InfoCyclone Inc. 

The start-up’s server appli- 
ance is designed to improve 
database performance by stor- 
ing frequently accessed data 
in its main memory, offloading 
work from the main server. 
The first appliances will have 
4GB and 16GB of memory and 
will be priced at $50,000 and 
$150,000, respectively. 

The appliance watches SQL 
queries as they come into the 
database and stores frequently 
accessed data for faster re- 
trieval. The next time the 
queries are run, the appliance 
executes them from memory 
using a high-speed, read-only 
SQL engine. As information in 
the database changes, the data 
stored in the appliance is kept 
up to date using Oracle’s Log 
Miner tool. 

“We’re adaptive in the sense 
that we’re constantly monitor- 
ing traffic and rearranging data 
so that it’s always optimally 
arranged for the queries,” said 
Ran Giladi, InfoCyclone’s 
chairman. 


Lower Licensing Fees 
Adventatia AG, a German 
company that matches unem- 
ployed workers with available 
jobs, attached the appliance to 
its database of some 12.5 mil- 
lion records. The company 
can now find matches faster 
and has managed to reduce its 


Oracle licensing fees, said Olaf 


Schmitz, Adventatia’s CEO. 

Because the appliance off- 
loads work from its database 
server, Adventatia has been 
able to reduce the number of 
processors in its Sun Micro- 
systems Inc. system from four 
to two, thereby reducing its 
database license fees. And the 
response times for its queries 
are seven times faster on aver- 
age, Schmitz said. “We got 
more speed with a cheaper 
machine,” he said. 

Adventatia got its appliance 





about five months ago as part 
of InfoCyclone’s pilot program 
and has decided to keep it. Its 
database is relatively simple, 


using only three columns for 


| most of its queries, Schmitz 


said, so it was able to buy the 
less expensive 4GB system. 


| 
| 
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“T’m not aware of anyone 
doing quite the same thing,” 


Va.-based Appfluent Technol- 
ogy Inc., which sells a replica- 
said Richard Ptak, an analyst | tion server designed to gener- 
at Ptak & Associates Inc. in | ate reports more quickly. D 
Amherst, N.H. Andthe price 9| —-—— 
seems reasonable, he added. Niccolai writes for the IDG 
One rival may be Arlington, | News Service. 
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OPINION 


MARYFRAN JOHNSON 


esource for Recovery 


ET’S INDULGE OURSELVES ina little 
optimism. Let’s assume that the latest 
upbeat surveys about IT spending in 2004 
are right on the money. 


Our sister publication 
CIO magazine reported 
last week that its monthly 
tracking poll among 200 
CIOs showed a substan- 
tial uptick in planned 
technology spending of S 
6.4% over the next year. 

Our own front-page story 

(“IT Budget Boosts Seen 

in 2004,” QuickLink 

40965] had industry ex- 

perts projecting tech 

spending increases of 3% 

to 5%, as corporate revenues recov- 
er, business and consumer confi- 
dence returns and IT projects start 
shifting off back burners. 

If even some of the above comes 
true and spending does loosen up, 
the next question usually becomes: 
Which market segment will reap the 
most benefit? Will it be security 
software? Web services? CRM? In- 
frastructure or network upgrades? 

Actually, I think there’s a more 
compelling set of questions for IT 
managers to consider. How will 
your relationship with your key ven- 
dors change during the next eco- 
nomic upswing? Will you evaluate 
their next round of products and 
services the same way you always 
have? Is there something more you 
could be doing to enrich your side 
of the equation? 

Here’s my best advice: Get to 
know their CIOs, CTOs and other 
key people within their IT organiza- 
tions. If you can, join their user ad- 
visory councils. Where are they in- 
vesting and expanding? Trimming 
back and consolidating? And how 
are they using their own products 
and services? 

The importance of this deeper fa- 
miliarity with your vendors’ internal 
IT operations struck me last week 





when I was visiting 
Qualcomm Inc., the San 
Diego-based wireless 
communications provid- 
er. I spent an hour there 
with CIO Norm Fjeld- 
heim, talking about how 
he runs his technology 
operation, manages an 
IT staff of about 550 and 
juggles his resources ina 
tight budget space. 
Like the top technolo- 
gist at any company 
these days, Fjeldheim worries about 
the pernicious impact of spam, the 
wave of virus attacks and a long 
lineup of integration and infrastruc- 
ture projects. His 2004 projects list 
runs the gamut: a storage-area net- 


work expansion, some high-end 


Unix migrations, growing use of 
Web services, Windows 2003 up- 


grades and new Linux installations. 


“T blinked and I had 500 Linux 
machines in here,” Fjeldheim says. 
He gives the Linux-on-Intel boxes 
high marks for performance and 





cost-effectiveness, but he notes that 


| a dearth of applications and engi- 
| neering tools is holding back larger 
| deployment. 


Fjeldheim encourages Qual- 
comm’s individual business units to 
take ownership of their IT choices. 
“IT is a standard services offering 
here,” he notes. “If the business 
units want to do something differ- 
ent, I say, ‘Go for it.’ Can they justify 
it to management? Most of the time, 
they use us internally.” 

Over the past four to five years, 
Fjeldheim has moved much of the 
cost of IT out into the departments. 
“About 40% of my costs are not un- 
der my control, though I manage 
[the technology] for the business 
units,” he adds. “The result is much 
better decision-making on their part 
and an improved relationship with 
IT. You have to do two things: 
change behaviors and pass along the 
savings.” 

Fjeldheim’s world isn’t unlike 
yours. And other vendor CIOs are 
probably facing project lists that 
are a lot like yours, too. Add in their 


| in-depth familiarity with their own 


companies’ products, and you have 


: 
compelling reason to develop a new 


relationship with your strategic ven- 
dors’ IT bosses. DB 
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PIMM FOX 


How Supply 
Meets 
Demand 


HE REAL POWER of 

e-commerce begins 

with an accessible and 
usable catalog of products. 


Businesses with fragmented, 
inconsistent online product listings 
are like doughnuts: They have a sub- 
stantial exterior with a big hole in the 
middle. 

Thanks to the efforts of Lawrence- 
ville, NJ.-based UCCnet, a nonprofit 
registry of business data for Internet- 
based supply chains, standard formats 
for product descriptions in 23 indus- 
tries have been developed, making it 
possible to organize and share infor- 
mation across companies. And tapping 
into this industry-standard approach 
should make it a no-brainer to convey 
product data elec- 
tronically throughout 
a trading network. 

FullTilt Solutions 
Inc. in King of Prus- 
sia, Pa., has adopted 
UCCnet standards 
for its product man- 
agement software, 

I-Accel. Product data 

loaded into I-Accel 

becomes the central 

registry. The Web- 

based electronic cata- 

log can be the touchstone for specs 
and prices and serve as a reference 
guide to your supplier backbone. In 
addition, when you push the catalog 
out to customers via a Java servlet, you 
give them the chance to view the same 
catalog. In the process, you eliminate 
mistakes made with faxes, phone calls 
and multiple product sheets. 

FullTilt’s software is designed to ac- 
cept data in consistent formats while 
taking into account the changing and 
evolving nature of product specifica- 
tions. And while it offers a view-only 
presentation, it’s compatible with XML, 
meaning connections to transactional 
applications are possible. At the very 
least, you'll have a comprehensive and 
consistent register of products that can 
be linked to invoicing and accounting 
procedures. 

Joe Pleasant, CIO at Premier Inc. in 
Charlotte, N.C., says his nonprofit hos- 
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pital alliance shares product info using 
I-Accel across its 1,500 hospitals. With 
it, he’s able to store product items ina 
master catalog that allows him to easi- 
ly segregate different categories of 
products, such as surgical or laborato- 
ry supplies, for different members of 
the health care alliance. 

“We're able to connect line items 
with contracts across our network,” 
said Pleasant. “This makes it possible 
to do analysis of products, compare 
pricing and organize our spending.” He 
calls it “master list integrity.” 

Another advantage of the product 
management system is synchroniza- 
tion with downstream partners. A Java 
Database Connectivity-compliant 
shared repository lets partners have a 
look at a common product line, which 
helps to improve order efficiency and 
invoice accuracy. 

Retailers such as Wal-Mart are em- 
ploying UCCnet formats in product 
management to improve the accuracy 
of transactions with suppliers. And we 
all know what happens to suppliers 
that don’t listen to Wal-Mart: They 
don’t get the business. D 


ANDREW FANO 


The New 
Internet 
Cops 


E HAVE long lived 

in a cops-and-rob- 

bers society, where 
the good guys catch the bad 


guys. Yet in the online world, 
the long arm of the law is noticeably 
shorter. 

The onus of policing the Internet 
still falls primarily on business, not 
government. In the physical world, 
should someone come into your store 
and steal a CD, it’s not up to you as the 
store owner to collect evidence and 
take the individual into custody. It’s the 
responsibility of the police. But that’s 
not the case online. 

Things are beginning to change, 
though. The Justice Department earlier 
this year launched Operation E-Con, a 
crackdown on cybercrime that has re- 
sulted in the arrests of more than 100 
suspects who allegedly collectively 
bilked an estimated 89,000 victims out 
of $176 million. 

Still, traditional law enforcement 
agencies are ill prepared to address the 


novel forms of cybercrime, 
including auction fraud, 
identity theft, slander, 
defamation, cyberstalking, 
infringement of intellectual 
property, corporate theft, 
pornography and more. And 
cybercrime is growing fast. 
Last year, the Internet Fraud 
Complaint Center, a partner- 
ship between the FBI and 
the National White Collar 
Crime Center, received 
more than 75,000 com- 
plaints, 67% more than in 2001. 

The absence of government enforce- 
ment has even given rise to online vigi- 
lantism. On eBay, for example, sophis- 
ticated participants who suspect a 
scam will bid an exorbitant amount to 
win an auction but then won't pay, ef- 
fectively nullifying the auction. As 
with all vigilante efforts, the innocent 
get punished along with the bad guys. 

And then there’s music. A market re- 
search study recently revealed that 43 
million Americans — half of all those 
connected to the Internet — use file- 
sharing software that allows them to 
copy music without paying for it. Yet 
the recording industry is left to sue In- 
ternet service providers to disclose the 


Dealing With Blaster and Microsoft 





names of individual users 


panies suing instead of dis- 
trict attorneys prosecuting? 


of safety in numbers. Anti- 
piracy approaches that 
scale to a significant pro- 
portion of those numbers 
are needed. Some foreign 
governments are attacking 
such problems from the top 
down by altering the infra- 
structure. For example, 


| Newsweek reported that China has 


worked with technology providers to 
deploy routers that have been altered 
to allow the tracing of communica- 
tions by citizens. 


Hacker Kevin Mitnick’s three-year 


dition of his parole — may be seen as 
an early example of what might be 
termed “e-punishment.” Government 
may avail itself of more precise tools 
that prevent violators from contacting 
certain individuals or organizations, 
engaging in particular commercial ac- 
tivities or using particular services. 
Such measures may smack of Big 
Brother, but in practice they may be 


a Tats 


| iately for fear of bringing down their 
systems. | would never turn a ma- 


| more humane and economical than 
one at a time. Why are com- | 


more traditional punitive measures. 
They are feasible, however, only if gov- 


| ernment and business cooperate. 
Today, pirates feel a sense | 
shipments at a border. Only by linking 


Consider the problem of inspecting 


real-time online supply chain and rele- 


| vant homeland security information 
resources can business and govern- 


ment ensure that imports aren’t at risk 
of becoming national security con- 


| cerns. In fact, we may find that some 

| of the capabilities of enterprise soft- 
ware may make them dual-use tech- 

| nologies. After all, the ability to identi- 
| fy the position of shipments that may 

| include hazardous materials is useful 

| from both a supply chain and a securi- 
| ty perspective. 

Punitive measures must also change. | 
| pression that government will soon 
banishment from the Internet — a con- | 
| the point. Instead, it is more reason- 

| able to expect that a combination of 

| technology, private business and gov- 

| ernment will act to fill the vacuum left 
| by the absence of government. B 


Such scenarios could leave the im 


take over the online world. This misses 
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HE BLAME for the situation de- 
scribed in“Microsoft, Users 
Cope With Worms’ Chaos” [Quick- 

Link 40817] lies squarely on the 
shoulders of the team of developers 
at Microsoft who wrote code but 


didn't check buffer size for overflow. 


This concept is simple and obvious. 
If you're going to write low-level log- 
ic to move data around memory, 
you're responsible for making sure 
that you don’t corrupt memory. But 
that doesn’t excuse the individuals 
who are exploiting these bugs. 
Stephen Zlamany 

President, Antares Computing 
Systems Inc., Huntington, 
Conn. 


NFORTUNATELY, applying 

patches is inherently danger- 
ous [“Blaster Shows IT Depart- 
ments the Need for Speed on 
Patches,” QuickLink 40608}. Most 
sysadmins | work with are reluctant 
to apply the latest hot fixes because 
they're terrified about what they will 
break. One is pressured by manage- 
ment to deploy the latest fix for a 
rapidly spreading worm, like Blaster, 


| but then clubbed by the same man- 


| ical service. The latest batch of se- 
curity updates crippled our server 
for a day. | would propose that the 
process itself is broken. What is re- 
ally needed is to insist on quality 
code that doesn’t die with buffer 
overflows and similar lame, newbie 
programmer flaws. There is too 

} much rush to get “new” out at the 
expense of “good.” 

Gregory Latiak 

| Technology Strategists Inc., 


UTOMATIC PATCHING would be 
an acceptable response if Mi- 
| crosoft could guarantee no side ef- 


| ic Patching,” QuickLink 40830). 

| Unfortunately, Microsoft has a long 
and consistent history of issuing 
patches that break other parts of 
the operating system or are incom- 
patible with other software. Even 

if Microsoft is quick to issue patch- 
es to cover security vulnerabilities, 
many systems and network people 
are reluctant to apply them immed- 





agement if it brings down some crit- 


| UCITA Revolution 


Toronto, glatiak@tekstrat.com | 
| would otherwise be criminal hack- 


| tracts that are hidden behind shrink- 
| wrapped packaging is revolutionary 
fects [“Microsoft Explores Automat- | 





| Ponchatoula, La. 


chine over to Microsoft for auto- 


} mated patching. Their poor soft- 
| ware caused the initial problem; 


what guarantee would | have that 
the patch wouldn't make matters 
worse? 

P.D. Levin 

Systems engineer, 
Pittsburgh 


O LAWYER and UCITA backer 
Chuck Morton doesn’t believe 
that a law that authorizes what 


ing and that makes binding con- 


[“Sponsor's Surrender Won't End 
UCITA Battle,” QuickLink 40484]. 

| can't arrive at any acceptable 
method to justify this reasoning. | 
refuse to accept that people who 
buy software are so rich that they 
have no reason to object to ridicu- 
lous terms that can obligate them to 
massive additional payments. 
Charles J. Lingo 





F, AS YOUR HEADLINE SAID, “IT 
Departrnents Face a Lack of 


| Project Management Know-how” 

| [QuickLink 40441], a jack of train- 
| ing dollars isn’t the problem. As a 

| highly experienced project manag- 
| er with some 20-plus years in the 


field, | feel that companies that lack 
project management skills in their 
employee base aren't doing 
enough to recruit the unemployed 
project managers who are out in 
the marketplace now. 

Jon R. Hickman 

Dallas, hickman@azone.net 


COMPUTERWORLD welcomes 
comments from its readers. Letters 
will be edited for brevity and ciarity. 


| They should be addressed to Jamie 


Eckle, letters editor, Computerworld, 
PO Box 9171, 500 Old Connecticut 
Path, Framingham, Mass. 01701. 
Fax: (508) 879-4843. 

E-mail: letters@computerworld.com. 


| Include an address and phone num- 


ber for immediate verification. 


For more letters on these and 
other topics, go to 
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YOUR VISION OF 


A BETTER DBMS 


For your next generation of applications, move 
to the next generation of database technology. 

Caché is the post-relational database that com- 
bines high-performance SQL for faster queries and 
an advanced object database for rapidly storing 
and accessing objects. With Caché, no mapping 
is required between object and relational views of 
data. That means huge savings in both development 
and processing time. 

Applications built on Caché are massively scala- 
ble and lightning-fast. Plus, they require minimal or 
no database administration. 

More than just a database system, Caché incor- 
porates a powerful Web application development 


environment that dramatically reduces the time to 
build and modify applications. 

The reliability of Caché is proven every day in 
“life-or-death” applications at thousands of the world’s 
largest hospitals. Caché is so reliable, it’s the leading 
database in healthcare — and it powers enterprise appli- 
cations in financial services, government and many 
other sectors. 

We are InterSystems, a specialist in data manage- 
ment technology for twenty-five years. We provide 
24x7 support to four million users in 88 countries. 
Caché is available for Windows, OpenVMS, Linux and 
major UNIX platforms — and it is deployed on systems 
ranging from two to over 10,000 simultaneous users. 
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Make Applications Faster 


Try a better database. For free. 


Download a free, fully-functional, non-expiring version of Caché or request it on CD at www.InterSystems.com/robust 
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EMERGING TECHNOLOGIES 

The Once and Future IT 

Vendors are racing one another to see 
which of them can deliver the most 
comprehensive tools to automate com- 
plex IT tasks. But autonomic comput- 
ing still has a long way to go. Page 28 
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Because help desks are becoming amore 
strategic component of the business, Level 
support agents are getting their hands on 
more tools. By Kym Gilhooly 


ee | 


T’S ONE OF THE REALITIES OF HIS 

job, says David Harkett, that al- 

most anyone can recognize the 

costs of a badly run help desk, but 

few people understand the value 
of a help desk that solves problems 
quickly, consistently and with the 
fewest possible resources. 

“The costs of a help desk is a bottom- 
less black hole — problems never go 
away,” says Harkett, the help desk prac- 
tice technical solutions manager at Lon- 
don-based BT Group PLC’s BT Global 
Services unit. “It’s not so much the 
money but how you spend it, how you 
maximize support while not over- 
stretching your resources.” 

That’s no easy balance to maintain 
when the scope of the task is explod- 
ing. “Five years ago, IT help desks 
were supporting an average of 25 ap- 
plications, a number that grew to 200 





| in 2001. Today, some are supporting in 


the range of 300 applications,” says 
Kris Brittain, an analyst at Gartner Inc. 
“With the service and support delivery 
model, there’s such pressure to deliver. 
But cost is king, so there’s a real need 
for process refinement.” 

This need is bringing unprecedented 
attention to help desks’ ability to re- 
solve users’ problems during the initial 
call and is driving them to automate 
support in areas such as diagnostics, 
self-healing, asset management and 
electronic software distribution. Not 
only are businesses increasingly imple- 
menting self-service channels and 
building knowledge bases to enable 
users to solve problems themselves 
whenever possible; they’re also em- 
powering front-line agents as never be- 
fore. Remote support tools that were 
traditionally the province of Level 2 





IT Tackles _ 

Cosmic Questions 
Off-the-shelf fiber-optic gear 
will help the National Radio 
Astronomy Observatory’s Very 
Large Array radio telescope 
“see” better. Page 30 


and Level 3 engineers are now in the 
hands of Level 1 agents — and those 
tools are becoming increasingly so- 
phisticated in using the Internet to 
deliver diagnostic, collaboration and 
problem-resolution capabilities. 

“The automation segment is getting 


very interesting: From the mid-’90s un- | 


til now, there’s been a lot of focus on 
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SECURITY MANAGER’S JOURNAL 
Corporate Network 

Blasted From Abroad 
Precautions at corporate headquarters 
notwithstanding, the Blaster worm 
breaks in by way of an unprotected 
overseas office. Page 31 


| what’s happening in Tier 1 support, so 
| there’s been consistent improvement 
| at what’s available at the agent level,” 
| says Brittain. 


Although help desk managers still 


| worry about security when supporting 


machines outside corporate firewalls 


— and dealing with users who are re- 
luctant to hand over control of their 
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Delivering Support 


In a recent Supportindustry.com survey that was spon- 
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port to become more difficult to deliver in the next year 
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complexities. Meanwhile, 44% saw their support bud- 
aeRt eee) im UCR TLL ow Abe: Road 
mand for their services increase. To deal with these 
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automated help and collaborative technologies: 


machines — the ability to cut costs while keeping 
workers productive takes precedence. 

“Assisted help technologies are adopted because 
they increase first-call resolution rates and reduce 
escalation to Level 2 support,” says John Ragsdale, an 
analyst at Forrester Research Inc. “Average costs for 
Level 3 support [deskside visits] are between $85 and 
$120, and companies see 40% to 50% of that reduced 
by remote support. It’s very challenging to walk peo- 
ple through a fix over the phone, particularily if 
they’re not tech-savvy, and remote support elimi- 
nates that concern.” 


Support, From A to Z 


Remote support products offer a range of assisted ser- 
vice functionalities. Using secure connections, they 
can inventory individual machines to put user infor- 
mation in the hands of agents in real time and provide 
collaborative capabilities so agents can communicate 
with users during support sessions. If needs escalate, 
an agent can remotely share a user’s desktop, push the 
appropriate files or take complete control. 

Some offerings provide their own intelligent knowl- 
edge bases for capturing support session data, while 
others integrate with third-party offerings. They also 
integrate with enterprise call management systems to 


facilitate trouble-ticketing, and in some cases they can | 


be launched from the help desk console. 

For its part, BT Group has made support automa- 
tion a key component of its help desk centralization 
effort, which started several years ago under a single- 
point-of-contact model. “Everyone was working in a 
silo, with no one looking across to see what others 
were doing. We needed a bird’s eye view to build a 
bridge from A to Z,” says Harkett. 

The scope of BT’s support dictates such a view, he 
says. From three sites in England and Scotland, the 
company’s 250 help desk analysts support nearly 


| 


| 
| 
| 
| 
| 





| port. The company’s help desk provides 
| only Level 1 support, so first-contact reso- 


TECHNOLOGY 


105,000 employees in the U.K. and other parts of the 
world, many of whom are mobile. Support challenges 
are exacerbated by BT’s push toward telecommuting, 
which means it must support home workers over a 
range of connections. 

“Standardization is an increasing concern and 
something we’re looking at closely, but with more 
than 250,000 machines to support, we have to be able 
to support anything from Windows 95 to brand- 
spanking-new laptops. It’s hard work,” says Harkett. 

To automate support functions and provide re- 
mote support, BT has deployed a range of home- 
grown and commercial systems, including software 
from SupportSoft Inc. in Redwood City, Calif., whose 
suite includes self-service, assisted service, knowl- 
edge management, asset management and self-heal- 
ing capabilities. There’s also a pop-up screen mecha- 
nism through SupportSoft’s Clarify call management 
console that provides agents with a user’s desktop 
information as well as any previous trouble tickets 
that have been generated. 

Thanks to improved processes as a result of support 
automation and other efforts, the first-call resolution 
rate has climbed considerably. “We aim for 80% fixed 
at the desk, and we hit that or better,” says Harkett. 

Although online assisted-service technologies have 
been a boon for corporate help desks, they’ve raised 
concerns in the areas of security and bandwidth use. 


| Some products require companies to reconfigure 


their firewalls when they’re connecting to desktops 
outside their secured network or to temporarily open 
up ports, both of which they’re reluctant to do. 

“I’m paranoid about security, and this industry is 
very regulated as far as information security,” says 
David Langston, CIO at Allied Home Mortgage Capi- 
tal Corp., a Houston-based mortgage broker manag- 
ing $9 billion in assets. “Now it’s not an option from a 
legal perspective, and never was from a business per- 
spective. We need all the warm fuzzies of knowing 
we're working in a safe environment. We need to 
know we’re negotiating a seamless connection to a 
remote user and that there’s encrypted 
security built into the process.” 

With 652 remote offices in 49 states, 
Guam and the U.S. Virgin Islands, Allied 
had no choice but to adopt remote sup- 


lution is key so support doesn’t have to be 

escalated to independent regional contractors. Allied 
uses Desktop Streaming from Santa Barbara, Calif.- 
based Expertcity Inc., an application service provider 
that offers AES 128-bit key encryption to ensure se- 


| cure connections. The offering requires an alert 


agent on the technician’s desktop, but it doesn’t re- 

quire client software on the user’s desktop. 
Raymond James Financial Inc. (RJF), which uses 

the LANDesk Management Suite from South Jordan, 


| Utah-based LANDesk Software Inc., deals with fire- 


wall constraints by complementing its LANDesk 
Management installation with LANDesk’s Instant 
Support Suite Pro (ISSP) product. St. Petersburg, Fla.- 


| based RJF uses ISSP to support independent contrac- 


tors, which aren't on its frame-relay network and 

therefore aren’t protected by its firewalls, says Andy 

Nosal, RJF’s supervisor of LANDesk operations. 
Previously, to set up a remote session, RJF had to 





WARY USERS 


Users reluctant to let the help 
desk control their PCs remotely 
usually warm up to the idea: 
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open certain ports, or contractors had to move their 
PCs into the “demilitarized zone,” which was time- 
consuming and left desktops vulnerable to breaches. 

RJF uses ISSP under a hosted model for those situ- 
ations. In addition to providing 128-bit SSL encryp- 
tion, the product enhances security by uninstalling 
itself from a client after a session. 


Win-Win Situation 


Though a lot of users are initially reluctant to allow 
help desk agents to view and control their machines, 
they ultimately do so to remain productive. Many 
agents, meanwhile, are experiencing increased job 
satisfaction, and when they use chat during remote 
support, they can handle multiple sessions — some- 
thing they can’t do when using the phone. 

“We get great feedback from users on our remote 
assistance — it wows them,” says Mike Wiram, direc- 
tor of computer services at Phoenix-based U-Haul 
International Inc. U-Haul uses eCare from Emery- 
ville, Calif.-based Netopia Inc. to support Internet- 
based point-of-sale systems used by 15,000 company- 
owned and independent dealerships. 

“In the past, we had regionally dispersed computer 
techs driving around fixing broken computers, but it 
wasn’t cost-effective,” says Wiram. Now, when users 
are having problems, they click on eCare and auto- 
matically open up a chat session with a support rep- 
resentative. If they can’t solve the problem during 
the chat, the rep asks permission to take control of 
the machine, which happens in about 10% of cases. 

“We have a wide variety of user [platforms], from 
Windows 95 to XP with IE 6.0. Agents don’t uniform- 
ly know what they’re going to get, but once they take 
over, they can see what updates are missing, what 
settings need to be changed,” says Wiram. 

In addition to enabling quicker fixes, eCare al- 
lows agents to conduct multiple support sessions 
at once using online chat tools. “On the phone, hu- 
man nature takes over, so if it’s a minor problem, 
people tend to talk about unrelated things during 
the session. But if it’s a chat session, it’s 
‘Just the facts, ma’am,’ and that’s much 
more efficient,” says Wiram. 

“We don’t recommend it, but I’ve seen 
an agent handle seven sessions at once,” 
says BT’s Harkett, adding that juggling 
multiple sessions is a huge productivity 
boost, since BT’s three help desks each 
field 30,000 calls per month. 

And at the end of the day, it’s productivity that 
drives a business. “Let’s face it — it’s about the bot- 
tom line,” says Steve Kutzer, vice president of IT op- 
erations at Washington-based CarrAmerica Realty 
Corp., a real estate investment trust that leases com- 
mercial real estate in 10 markets. CarrAmerica uses a 
service from Fremont, Calif.-based Everdream Corp. 
to handle remote support for 92 locations in the U.S. 

“We have to ask ourselves, How does quality sup- 
port help us lease space?” says Kutzer. “Basic PC sup- 
port in and of itself is not strategic to any organiza- 
tion — everything becomes a cost-benefit analysis. 
For us, cost avoidance means the product pays for 
itself many times over.” D 





Gilhooly is a freelance writer in Falmouth, Maine. 
You can reach her at kyng@maine.rr.com. 
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Autonomic 
computing may 
already be here, 
but the real payoff 
is three to 10 years 
away. By Matt 
Hamblen 


The central promise of autonomics 
is that IT workers won't need to do as 
many routine chores such as restore 
failed servers or provision switches 
and routers. Autonomics can free up 
IT workers for higher-level tasks and 
give them more time to spend with 
business managers to find ways to 
make systems work for the needs of 
their companies. 

But is there anything new about au- 
tonomics? Is it simply old technology 

incrementally 

improved and 
EMERGING ys repackaged with 
TECHNOLOGIES 03> penn 

word? Perhaps. 

= But IT managers 

keenly understand the new benefits of 
autonomics, while acknowledging that 
the concept has a long history. 

“Autonomics is definitely evolution- 
ary, and we don’t look at it as a distinct 
point” when a company suddenly has 
it, says Ed Toben, CIO at Colgate-Pal- 
molive Co. in New York. His company 
has widely deployed IBM systems man- 
agement products, including Tivoli 
software, to keep its SAP system run- 
ning on servers and storage gear in 55 
countries. “For us, autonomics means 
that systems can be self-managed, and 
the more you can do that, the better,” 
says Toben. With steady growth in sys- 
tems at Colgate-Palmolive, “there’s just 
a constant struggle against expansion 
and complexity,” he explains. 

John Freeman, senior process engi- 
neer at Bayer HealthCare, a Shawnee, 
Kan.-based division of Bayer Corp., 
says the drug maker uses software 
from Tripwire Inc. in Portland, Ore., to 
provide control in the manufacturing 
process. Federal mandates require 
valid digital records, so automatic 
monitoring and reporting is critical, he 
points out. 

“We’re constantly looking for ways 
to automate processes, whether it is a 
machine or an operator process or data 
collection and generation of reports,” 
says Freeman. “In IT, we’re trying to 
put ourselves out of work.” 

Eventually, Freeman wants a man- 
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Behind the Name 


Autonomic computing, also called on- 
demand computing, organic IT and 
other names, means business policies 
and service-level agreements “drive 
dynamic and automatic optimization of 
the IT infrastructure,” according to 
Gartner Inc. The research firm has 
dubbed the phenomenon “real-time 
infrastructure,” replacing the term it 
used two years ago, “policy-based 
computing services.” 

“It means,” says Amy Wohl, an ana- 
lyst at Wohl Associates in Narberth, Pa., 
“allowing the computer to automate and 
control as much of the routine tasks of 
the system as are feasible at any mo- 
ment and allowing them to be managed 
under policies set by the organization.” 

The analysts admit their definitions 
are broad and sound like what systems 
management vendors and experts 
have been talking about for 15 years. In 
fact, some analysts include more than 
20 technologies under the general 


agement system that automatically re- 
ports on manufacturing systems and 
the security of production, so if there’s 
any corruption in an application file, 
for example, the process can be rolled 
back to a previous file version auto- 
matically while immediately generat- 
ing a report for inspectors. 

Further, Freeman argues that any 
new autonomic capabilities shouldn’t 
require major changeovers of operat- 
ing systems or hardware. 


Users who are considering autonom- | 
| written that will define remedial ac- 
| tions that machines can take, instead of | 
| just alerting overworked IT staffers. 


ics say they want systems that are able 
to reboot the hardware used by appli- 
cations that have failed, such as e-mail 
or database servers. For example, an 
autonomic process could reboot a 
server and notify an IT administrator 
or reroute functions to a backup appli- 
cation on another machine. 

“Every time I have to restart my cus- 
tomer database, my customers don’t 
have access,” complains Perry Cain, 
chief technology officer at Suppleye.- 
com, an e-procurement medical prod- 
ucts supplier in Fairlawn, Ohio. “I'd 
like fewer restarts. [But] I'd like to see 
autonomics in a lot of products.” 

Vendors are promising many other 
potential benefits, such as the ability to 
raise the utilization rates of servers by 
running multiple applications on a sin- 
gle underused server. Or organizations 
might be able to marshal clusters of 
servers to do high-priority work and 





heading of autonomics, including self- 
healing software and grid computing. 

Because of the poor economy and 
the focus on getting payoff from IT in- 
vestments, user interest in autonomics 
is suddenly higher and there have been 
more announcements of software tools 
with improved functions, says Gartner 
analyst Thomas Bittman. 

There are other forces driving inter- 
est in autonomics. For example, the 
performance of networking, server and 
storage hardware is increasing while 
the costs of those products are going 
down, Bittman adds. Meanwhile, IT 
labor costs are still going up and make 
up the lion’s share of an IT budget. 

Also, hardware vendors are seeing 
their profit margins dry up as the cost 
of servers goes down, and they've 
been rushing to buy smaller companies 
or develop autonomic products for fu- 
ture revenues, he says. 

- Matt Hamblen 


then automatically jump back to a pri- 
or job once the urgent task is done. 


| The process would happen without 


human intervention, based on policies 


| set by managers, according to Thomas 
| Bittman, an analyst at Gartner Inc. in 


Stamford, Conn. 

When something breaks in systems 
today, management software typically 
uses annoying beepers and lights to 


| alert systems administrators, who then 


run to fix things. With more autonom- 
ic tools, Bittman says, processes can be 


With autonomics, says Laura Koet- 


We’re con- 
= & stantly looking 
for ways to automate 
processes, whether 
it is a machine or an 
operator process or 
data collection and 
generation of re- 
ports. In IT, we’re 
trying to put our- 
selves out of work. 


JOHN FREEMAN, SENIOR PROCESS 
ENGINEER, BAYER HEALTHCARE 


| zle, an analyst at Forrester Research 





| planning functions. 


| job loss seems remote,” he says. 





Inc. in Cambridge, Mass., server uti- 
lization rates could be “massively high- 
er,” perhaps rising to an average of 

80% from the 20% that’s typical today. | 
She also suggests that there will be 
dramatic increases in labor efficiency, 
thanks to a reduction in the number of 
mundane and repetitive tasks and an 
increase in the speed at which IT prob- | 
lems can be resolved. Tasks that once | 
took months could be completed in 

days or even hours, she says. 

Today, systems monitoring capabili- 
ties are widely available, but systems 
capable of making automated respons- 
es based upon business demands are 
on the way, analysts say. There’s an ar- 
ray of vendors lining up to provide 


| new products, with some announce- 


ments planned in the fall. 


| Coming Attractions 


Gartner lists 22 technologies related to 
autonomics that are coming in the next 


| decade. Those that are either available 


today or expected in less than two 


| years include automatic high-availabil- 
ity/fail-over capability, network load 
balancing, resource chargeback to user 
| groups, hardware partitioning and in- 


house massively parallel processing 


(MPP) grids, which offer the ability to 
| use excess computing capacity on dis- 
| tributed clients or servers for parallel 
| processing workloads in a secure way. 


In two to five years, autonomic com- 


| puting will foster technologies such as 
| self-healing software, IT service provi- 
sioning, MPP grids external to organi- 


zations, root-cause discovery and cor- 


| rection, and self-healing hardware, 
| Gartner says. Between 2008 and 2013, 


Gartner predicts major innovations 


| such as general-purpose grid comput- 


ing as well as service billing, service 


| governing and service policy managing | 
| systems that shift IT resources to meet 
| business needs at the lowest cost. 


The biggest long-term promise of 


|} autonomics is that it will save users 

| money, primarily by taking expensive 
| IT workers off of mundane tasks, says 
| Forrester’s Koetzle. But she says she 


doesn’t expect a decrease in IT jobs. 


| Instead, she sees well-trained workers 


being reallocated to development and 


Toben at Colgate-Palmolive concurs. 
“Our IT shop is so busy that the risk of 


“My concern in 10 years is there 
won't be enough people with knowl- 
edge of the automated process, and 
that that could lead to downtime,” adds | 
Bayer’s Freeman. 

The biggest cultural challenge with 


Autonomic 
Prep Plan 


IT managers and staffers need to 


25 


Evaluate ways to better 
understand business needs 
and get ready to meet 
those needs. 


Pn 


Set up best practices for 
service-level management by 
mapping IT services to their 
underlying hardware and 
software components. 


Enable automated server provisioning 
with standard server images. 


Consolidate servers and storage. 


Restructure the IT organization 
to consolidate management of 
computing resources. 


as 


Change chargeback systems so that 
all distributed systems are used by all 
users, with IT staff organizing usage. 
This would change the current 
predominant practice where certain 
servers and systems are dedicated for 
certain workgroups and purposes. 


autonomics will be deciding how 
much control to give over to the com- 


| puting infrastructure. But Rich Ptak, an 


analyst at Ptak & Associates Inc. in 
Amherst, N.H., says he believes ven- 


| dors will set up autonomic tools to 
give IT managers a range of authority, 
| from very little to a lot. “A process 

| could be set at a semiautomatic rate at 
| first,” he notes. D 


| VENDOR OFFERINGS 





For a sampling of some of the autonomic products 
vendors have to offer, visit our Web site: 


QuickLink a3590 
www.computerworld.com 
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2 The Very Large Array is a collection of 27 radio antennas on the Plains of San Agustin in New Mexico. 


IT Tackles 


Cosmic 
Questions 


The National Radio Astronomy 
Observatory uses telecommuni- 
cations technology to explore the 
beginnings of the universe. 


By Bob Brewin 


The National Radio Astrono- 
my Observatory (NRAO) has 
tapped the enormous data- 
handling capabilities of off- 
the-shelf fiber-optic gear to 
help it peer through the uni- 
verse and capture signals from 
the beginning of time. A $150 
million upgrade to the NRAO’s 
Very Large Array (VLA) radio 
telescope in southern New 
Mexico will be based on the 


same technology used by tele- 
phone networks. 

Once the upgrade is com- 
plete, the VLA will be called 
the Expanded VLA, or EVLA. 
To process the flood of data 
that will come from the fiber- 
optic network, the NRAO is 
developing what EVLA proj- 
ect scientist Richard Perley 
calls a “godlike” supercomput- 
er, known as a correlator, 





| which will be built using com- 
| mercial computer chips. 


The VLA, located on the 


| Plains of San Agustin 50 miles 
| west of the NRAO’s opera- 


tions center in Socorro, N.M., 
consists of 27 radio telescope 
dishes — each measuring 82 


ft. in diameter and weighing 
| 230 tons — that scan radio 
| emissions from distant stars 


and galaxies and can “see” 
galactic objects undetectable 
by even the best optical tele- 
scopes, according to Perley. 
Radio telescopes probe the 


universe by collecting natural- | 
| ly emitted radio waves from 
| celestial objects, running them 


through a computer processor 
and then using the specific ra- 
dio frequencies emitted by 
each object to produce an im- 
age, according to Dave Finley, 
a spokesman for the NRAO, 
which is operated by Wash- 
ington-based nonprofit Asso- 
ciated Universities Inc. for the 
National Science Foundation. 

When the NRAO built the 
VLA in the 1970s, it used the 
best technology available at 
the time — hollow metal tubes 
called waveguides — to trans- 
mit signals from the antennas 
to a processor. 

But analog technology limit- 
ed the VLA to sampling no 
more than 512 spectral chan- 
nels from atoms and mole- 





cules in distant galaxies. The 
EVLA will be able to sample 
and process 4 million chan- 
nels, Perley says. 

The ability to tune across a 
broader frequency range is 
important, Perley explained, 
“because the further you go 
back [in time], you go lower in 
frequency.” The EVLA will be 
able to detect galactic emis- 
sions in a frequency range 
from 200 MHz to 50 GHz, 
whereas the current VLA cov- 
ers only about 25% of that 
range at any one time. 

The VLA consists of three 
arms, each 13 miles long and 
containing 24 telescope pads, 
arranged in a Y-shaped 
pattern. Every four months, 
the NRAO shifts the 27 tele- 
scope dishes among the 72 
telescope pads. 

By rearranging the antennas 
— done with a special rail 
transporter that moves the 
massive dishes from pad to 
pad — the NRAO can change 
the focus of the array, much 
like using a zoom lens in a 
camera, according to Finley. 

Each pad requires a network 
connection — analog wave- 
guide today, fiber-optic to- 
morrow. To serve the 72 pads, 
the NRAO has started to in- 
stall a fiber network that will 
provide a dozen 10Gbit cir- 
cuits per antenna, adding up 
to 3.2Tbit of total network ca- 
pacity, according to Steve Du- 
rand, head of the NRAO’s 
electronics division. 


Miles of Fiber 
The EVLA will require a fiber 
network that’s 2,759 miles 
long, roughly the distance 
from Los Angeles to Washing- 
ton, said Durand. 

Durand says the EVLA fiber 
network is based on existing 


| wave division multiplexing 


fiber-optic technologies, so he 
was able to build the system 
with standard, off-the-shelf op- 
tical multiplexers from compa- 
nies like JDS Uniphase Corp. 
in San Jose and Applied Micro 
Circuits Corp. in San Diego. 

“We’re going to be on the 
cutting edge of astronomy by 
capitalizing on advances in the 
telecommunications industry,” 
Durand says. 

Perley says that the NRAO 
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tapped the National Research 
Council of Canada’s Dominion 
Radio Astrophysical Observa- 
tory (DRAO) in Penticton, 
British Columbia, to design 
and build the EVLA correlator. 
The council also funded the 
$16 million cost of the correla- 
tor, which its designer, DRAO 
engineer Brent Carlson, calls 
the largest single-purpose su- 
percomputer in the world. 

Steve Ellingson, an astrono- 
my engineer at Ohio State 
University in Columbus, cau- 
tions that the EVLA can’t be 
compared with general-pur- 
pose supercomputers that can 
be programmed to perform 
multiple tasks. The EVLA cor- 
relator is a “quite specialized” 
digital signal processor, he 
says, “and it’s not fair to com- 
pare it to a programmable su- 
percomputer.” 

The correlator system, 
which the NRAO will build in 
Canada and then install at the 


| VLA site in 2007, will include 


20,000 commercial field-pro- 
grammable gate-array chips. It 
will also include 10,000 cus- 
tom chips designed by the 
NRAO, each with 3 million 
gates, Carlson added. 

The correlator will send the 
EVLA’ signals to a Beowulf 
cluster of 64 PCs for further 
processing, and that cluster’s 
output will be sent to an im- 
age-processing system being 
developed by the NRAO, with 
all connections via Gigabit 
Ethernet, Durand says. Storage 
will be on a constantly ex- 
panding RAID system, with 
access to the data by astrono- 
mers through an Internet- 
based “virtual” observation 
system, Carlson says. 

EVLA project manager Pe- 
ter Napier says the new array 
will “provide us with 10 times 
the resolution and sensitivity” 
of the current array. This in 
turn will allow the NRAO “to 
see through the dust” of space 
and eventually help the NRAO 
“resolve the evolution of the 
universe,” he says. D 


STANDARD STUFF 


To find out how the NRAO is using common 
equipment for an extraordinary mission, 
visit our Web site: 


g QuickLink 40456 


www.computerworld.com 
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Corporate Network 
Blasted From Abroad 


A poorly configured overseas office net- 
work allows a worm to slip inside the corpo- 
rate LAN defenses. By Mathias Thurman 


Y COMPANY has 
offices all over the 
world, including a 
software develop- 
ment center in India. Many of 
the networks located in such 
locations are managed inde- 
pendently. I’m not sure why 
we have continued to let those 
overseas locations administer 
their own networks, but the 
policy has created extra 
headaches for my 
team in the past few 
weeks as we battled 
Blaster and other 
worms that exploit 


dows’ remote proce- 
dure calls (RPC). 

These worms take advan- 
tage of a previously discov- 
ered vulnerability in the way 
the Windows operating sys- 
tem handles RPCs, Microsoft’s 
methodology for allowing its 
operating system to run pro- 
grams on a remote server. 

When a worm finds a server 
with an open, vulnerable RPC 
port (typically Port 135), it cre- 
ates a buffer-overflow condi- 
tion to force the server to 
spawn a shell, typically on 
Port 4444, and download the 
worm to the server. The worm 
then starts the process again. 

Not only can a vulnerable 
system be used to propagate 
the worm, but a malicious 
user can also take advantage 
of this buffer-overflow vulner- 
ability to execute arbitrary 
commands on a vulnerable 
server. 

We first noticed problems 
when our network operations 
center (NOC) reported an in- 
crease in network utilization 
within our data center in the 
U.S. After some investigation, 
we determined that the source 


| 
| 
| 


signe 
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of the problem was TCP/IP 
traffic with a large range of 
source and destination IP ad- 
dresses, all of it destined for 
Port 135. Our company keeps 
that port open internally so 
we can run programs such as 
Microsoft Exchange, Active 
Directory and print services. 

Externally, however, we 
block it at our core routers 
and firewalls. Shortly after the 
NOC detected the 
bandwidth problem, 
we started getting 
calls from both our 
Windows NT net- 
work administrators 
and our customers. 
They reported prob- 
lems ranging from unautho- 
rized accounts being created 
to arbitrary reboots, as well 


| as problems when launching 

| Microsoft Word or Excel. 

| The call volume escalated so 
quickly that our help desk was 
| inundated within an hour. 


After some analysis of the 


Port 135 traffic, we noticed that 
| over 40% of it was coming 


from the India development 


| site. The rest came from vari- 


ous IP addresses within the 


| company. We also discovered 
that a Web server had been 


compromised and that a Web 


| page had been altered at the 


We found that 
the India site had 
an entire network 
that was publicly 

accessible. 


India site. This was alarming 
because all authorized Web 


| servers are supposed to reside 
| in our corporate headquarters. 
What’s worse, the Web serv- | 
| deal with this problem. I antic- 


er in question was not only 


| running on a publicly accessi- 
| ble IP address, but it also con- 


tained links to locations with- 

in our corporate intranet. 
After more investigating, we 

found that the India site had 


| an entire network that was 
| publicly accessible and that 


the routers were configured to 
route public IP addresses to 
our internal IT network. This 


| was a major security problem 
| because a compromise of any 


of those systems could lead to 
a breach of our internal infra- 


| structure. In addition, the 
| routers were supporting Port 


135 and other port numbers 


| that should have been blocked. 


We quickly took control of 


those network resources and 


had the remote administrators 


| block all unnecessary ports 
| and shut down their Web 


servers. Then we turned to the | 


task of containing the damage. 
That wasn’t easy because the 
worm was running rampant 


| throughout the rest of the or- 


ganization. 
Our first action was to pre- 
vent it from propagating fur- 


| ther. The only way to do this 


was to install filters to block 
Port 135 at all of the routers 
and firewalls connected to the 
infected networks. This was 
disruptive because it prevent- 
ed legitimate business func- 
tions, such as printer- and file- 


| sharing, from continuing. We 


reassured users that the delay 


would be temporary. 


Next, we instructed all ad- 
ministrators and infected 
users to immediately down- 
load the appropriate security 


| update and run the worm- 
| removal tool, which we pro- 


vided on the corporate in- 


| tranet. We then asked these 


parties to ensure that they 
were running the latest virus 
signatures and to reboot their 


| machines. After giving every- 


one time to respond, we con- 
figured the routers back to 
their original state and waited 
to see if the problem was 


| solved. 


It has been a few weeks 


now. We continue to get spo- 


radic bursts of worm activity, 
but it’s not consuming the 


| same amount of man-hours, 


and we now have a process to 


ipate that in another week or 


| so we will finally be rid of this 


miserable pest. 


| A Good One Gets Away 


Shortly after we got the RPC 


| dilemma behind us, we faced 

| another issue: One of our top 
| security engineers resigned. I 
| had a feeling that this was go- 


ing to happen. He has always 


| been interested in conducting 
| vulnerability assessments. 


In other words, the engineer 
likes to hack, and he had antic- 


| ipated that he would be given 


opportunities to do so. During 


| the hiring process, I told him 


that I didn’t think it would be 


| a problem letting him spend 


some time conducting assess- 
ments and penetration testing 


| of our applications and other 


infrastructure. 
Unfortunately, we have had 
so many other priorities to 


| address that we just couldn't 
| let him focus on this type of 
| work. The problem with small 


IT security organizations is 


| that we can’t compartmental- 


ize job functions. If I had it my 
way, I would have someone 

whose sole job would be to do 
research. I think the latest rash 


| of RPC problems really put 


him over the edge, and now 


| we’re now down a staffer. So 


next week, once again, I have 
to start thinking about how to 
fill an open position. D 


| WHAT DO YOU THINK? 


| This week's journal is written by a real 


security manager, “Mathias Thurman,” 
whose name and employer have heen 


| disquised for obvious reasons. Contact him 


at mathias_thurman@yahoo.com, or join the 
discussion in our forum: QuickLink a1590 


To find a complete archive of our Security 


| Manager's Journals, go online to 


@ computerworid.com/secjournal 


TN 





On Your 
Mark... 


Are you ready to 
reduce power 
densities in your 
rack with an 
efficient, cost-saving 
power and cooling 
solution that 
ensures 
availability? 
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from legacy systems to a 
new integrated power and 
cooling solution. 
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Microsoft on Trial 


HAT WOULD HAPPEN, I asked 
myself last week, if a court 
opened an inquiry into what 
was really behind the Blaster-B 
worm. It doesn’t take much 
imagination to reconstruct the cross-examination 


of the prime suspect. 

Judge: Court is now in 
session. Microsoft, you 
are charged with negli- 
gence and incompetence. 

The prosecution will call 
its first witness. 

Prosecution: We call 

Microsoft to the stand. 
Do you swear to tell the 
truth, the whole truth, 

and nothing but the truth? 

Microsoft: I’m sorry, you 
used a word in there that 
I don’t completely under- 
stand. Could you rephrase 
the question? 

Prosecution: Never mind. Would you 
just please state your full name for 
the benefit of the court? 

Microsoft: You can call me Maynard 
G. Krebs. 

Prosecution: Look, Mr. Krebs, er, 

I mean, Microsoft, I assume you are 
aware of the so-called Blaster-B 
worm that exploits a remote proce- 
dure call in Windows in order to 
cripple machines. Can you tell 

the court what happened? 

Microsoft: The RPC gives customers 
the application compatibility they 
demand, but the feature wasn’t in- 
tended for use in a hostile environ- 
ment like the Internet. We were 
caught by surprise when we found 
out Windows XP customers were 
connecting to the Internet. We have 
since cautioned customers against 
doing this. We really can’t be re- 
sponsible if they use our technology 
recklessly. 

Prosecution: Given that you must 
have known some people would con- 





nect Windows XP to the 
Internet, can you tell me 
why you made it so easy 
for a malicious coder to 
exploit this RPC? 
Microsoft: We are com- 
mitted to the kind of in- 
novation that gives the 
end user the best possi- 
ble computing experi- 
ence. Now, this is an RPC 
— the operative word be- 
ing “remote,” and we 
want the RPC to be as 
easy to locate and use as, 
say, a television remote. 

Prosecution: Are you aware of the 
fact that infected machines reboot 
every 10 minutes, which doesn’t even 
give the user time to download the 
patch that fixes the problem? 

Microsoft: This is actually a brilliant 
part of our innovative embrace-and- 
extend approach to reducing cost 
of ownership. IT administrators tell 
us they need to reboot their Win- 
dows machines frequently to keep 
them operational. So we responded 
by making it possible for a worm 
to force the machine to reboot auto- 
matically on a regular basis, thus 
relieving administrators from the 
costly job of having to reboot the 
machines manually. 

You could say we embraced and 
extended Blaster-B, which we now 
call ActiveReboot. The fact that 
users can’t access the patch in 10 
minutes is deliberate on our part, 
since it prevents users from in- 
stalling a patch that would break 
ActiveReboot. We always try to stay 





one step ahead of customer needs 
and protect them from themselves. 

Prosecution: [sarcastically] Have 
you also embraced and extended the 
Sobig e-mail Trojan horse? 

Microsoft: As a matter of fact, we’ve 
taken Sobig and produced two new 
products from the code. The first, 
SoFirm, is a privacy-enhancing fea- 
ture that uses your address book to 
make outgoing messages appear to 
others as if they were sent from 
someone other than yourself. 

Our next product, SoFullyPacked, 
packs your in-box with thousands 
of copies of the latest version to 
make it convenient to apply updates 
whenever they’re released. In fact, 
we use ActiveTrojan technology 
to make installation and updates 
so easy that it’s almost automatic, 
which is another way to reduce cost 
of ownership. 

Prosecution: Speaking of cost of 
ownership, is it true that your own 
company employs 3,000 administra- 
tors for 7,000 servers worldwide? 
That’s one person for every 2.3 
servers, isn’t it? 

Microsoft: Yes, and we’re proud of 
this, since we know that with every 
server we sell, we’re doing our part 
to reduce unemployment. We like to 
think of it as “what’s good for Micro- 
soft is good for America.” 

Prosecution: That’s admirable, 
but how can you calculate a low 
total cost of ownership for Win- 
dows with one administrator for 
every 2.3 servers? 

Microsoft: Well, I’m not an accoun- 
tant, but I think it has something to 
do with outsourcing. I can call the 
India office where we did the study 
and get a copy for you. ... You look 
like you are getting a headache, Mr. 
Prosecutor. Perhaps you’d like to rest 
your case? D 


WANT OUR OPINION? 


For more columns and links to our archives, go to 
www.computerworld.com/opinions 








“Determining Total Cost of Ownership for Data 


FREE White Paper! FREE White Paper Center and Network Room Infrastructure” 


“Determining Total Cost of Ownership 
for Data Center and Network 
Room Infrastructure” 


C1 YES! pi 


e 


Determining Total Cost of 


Ownership for Data Center and i 
Network Room InfraStructure.” 
Also receive our FREE InfraStruXure 


Jay 


|_| Yes! Send me more information via e-mail and sign me up for APC PowerNews e-mail newsletter. Key Code n3\6y 


Key Cod 
, vy fate lity solution do you need? 
http://promo.apc.com n316y os oa Se sa pie ial is Chemicals 


(888) 289-APCC x2941 © FAX: (401) 788-2797 mee , _ 0 janagement 


e Vv n 1\r . 
ress (<1000 em; Lare > 1000 employees) 
Gi ducatio' D APC Sellers & Partners 


L dary Reliability” 





BUSINESS REPLY MAIL 


FIRST-CLASS MAIL PERMIT NO. 36 WEST KINGSTON Ri 
POSTAGE WILL BE PAID BY ADDRESSEE 


Arc 


ATTENTION CRC: n316y 
Department: B 

132 FAIRGROUNDS ROAD 

PO BOX 278 

WEST KINGSTON RI 02892-9920 


WWdevsvebabDaatalabeccelelbabeadelereelel/beadlect 


NO POSTAGE 
NECESSARY 
IF MAILED 
IN THE 
UNITED STATES 


How to Contact APC 


Call: (888) 289-APCC 


use the extension on the reverse side 
Fax: (401) 788-2797 
Visit: http://promo.apc.com 


use the key code on the reverse side 


Arc 


Legendary Reliability® 





Get 
Set... 


Are you set to save space 
and minimize installation 
and maintenance costs 

with a modular manageable, 
pre-engineered architecture? 


fy, 
Hs ve Hi 
- : 


& 


' 


BMRB eee 
vendor's 3-phase upgrade model, 
EME ee eR Re eS 8 
Cem ee ee) 
METRE RON ee ee 
of my precious floor space.” 


Captain Timothy Riley 
Support Services Division 
City of Newport Beach Police Department 


Many IT professionals have switched 
from an inflexible proprietary system to 
network critical physical infrastructure. 


apcc.com © 132 ad, West Kingston, Ri 02892 USA 
r Con ation. All Trademarks are the property of 
ISX2C3EF-US 





ADVERTISEMENT 


InfraStruXure” 
is the Key to 
Stronger NCPi 


by Russell Senesac 
InfraStruXure Product Manager 


APC InfraStruXure™ architecture is the industry's 
new benchmark for on-demand network-critical 
physical infrastructure (NCPI). The foundation of IT 
networks, NCPI consists of power, power distribu- 
tion, racks, cabling, cable distribution, cooling, and 
cooling distribution. Strong NCPI defends your IT 
networks against security and availability problems. 


Complementing these benefits of strong NCPI is 
InfraStruXure's open, adaptable, integrated ap- 
proach, which ensures optimal performance and 
lower upfront and operating costs. InfraStruXure 
fully integrates power, cooling, management and 
services within a rack-optimized design. 


Power 

InfraStruXure architecture features rack-optimized, 
intelligent UPSs and power distribution units that 
are highly manageable, modular, and pre-engineered 
to meet the demands of the smallest wiring closet to 


the largest data center. 


Cooling 

Cooling solutions designed for InfraStruXure are 
extremely flexible, fitting almost any data environment 
as though custom-made, but without the extensive engi- 
neering that traditional cooling systems require. 


Management 

InfraStruXure boasts the industry's only fully integrated 
power management solution. Monitor the elements of 
your data center, understand how your InfraStruXure is 
performing and, when necessary, take action remotely to 
ensure service levels are met—all from a Web browser on 
your desktop computer. You'll be able to maximize avail- 
ability through system-level proactive management 

InfraStruXure management solutions are easy to use and 


require little to no training. 


Services 

A full menu of professional services, performed by 
APC Global Services experts, supports your 
InfraStruXure architecture. Whether building a new 
installation or retrofitting InfraStruXure into your 
existing IT environment, a range of services is able to 
meet your specific needs. Factory-trained professionals 
commission the elements of your InfraStruXure, 
understand how it is performing and, when necessary, 
take action to ensure optimal service levels are met. 


The Result 

With InfraStruXure, you get the reliability, afford- 
ability and predictability of standard solutions, yet 
completely customized for your specific problems. 
As your requirements change, InfraStruXure easily 
adapts, allowing you to build out or scale back 
capacity as it is required. @ 


FREE White Paper and InfraStructure™ Brochure 


Visit http://promo.apc.com Key Code n316y 
Call 888-289-APCC x2941 © Fax 401-788-2797 





Go! 


Are you going to take advantage of 
this availability solution to prevent 
costly downtime? 


You Are. 


Stop hesitating 


A oTU AY -me-1- mea 

green light to ensure the 
continuous operation of your 
mission-critical electronic 
applications 


Go find out more about how 
Ties Clem or-TeM TOM ETE le iiNg 
into your business processes 


InfraStru. ure 
at a ete Pee 


FREE White Paper: 


“Determining Total Cost 
of Ownership for Data 
Center and Network Room 
Infrastructure” and FREE 
InfraStruXure™ Brochure 


To order: Visit http://promo.apc.com Key Code n316y 
Call 888-289-APCC x2941 © Fax 401-788-2797 


Go! Find Out More! 
Arc 


Legendary Reliability” 


d, West Kingston, Ri 02892 USA 


All Trademarks are the property of 





Technology so advanced, 
it'll make you smile. 


Tech people face a world of many 
demands and little time. Our all-digital 
line of printers, copiers and MFP’s are 
highly reliable and ready for network 
use, either wired or through our 


Tech Friendly because... 


Common User Interface embedded wireless technology 
Kyocera Mita uses advanced technology 
to make life simple and productive. 


Universal Print Driver Everything we do is aimed at making 
things less complex. Examples? A single 
driver operates all our devices. NetViewer™ 
software administers our systems across 
your network in real time. The list is 
long. And it’s how we've made so many 
friends in the MIS/IT department 


eIntegrated Wireless Solutions 


Tech friends meet at: 


" . . 7 www.kyoceramita.com/us 
°Cartridge-Free Drum Design 


THE NEW VALUE FRONTIER 


Very Low Cost of Ownership cy KY 0 C E R d 


mita 





KYOCERA MITA AMERICA, INC. 
©2003 KYOCERA MITA AMERICA, INC. “PEOPLE FRIENDLY” AND ALL ELEMENTS OF THE KYOCERA MITA LOGO ARE THE TRADEMARKS OF KYOCERA MITA. 


Seiter&Miller KM03-26D Creative Director: BW Art Director: DB Copywriter: \M Account Executive: TH Date: 4/16/03 
Publication: Computer World Pub Specs: Pg4C: 9.5x11.25 Issue Date: 4/28/03 





MANAGEMENT 


09.08.03 





Resilience: Staying on Top 
Waiting until the customers start to 
leave probably means that it’s too late 
for a turnaround, say Gary Hamel (left) 
and Liisa Valikangas in this month’s 
Harvard Business Review. Page 38 


The Forgotten Side 

Of Outsourcing 

Columnist Bart Perkins says 
reckless outsourcing can strip your 
company of talent and sow fear in 
the remaining staff. Page 42 





Building E-trust 

A dispute mediator and a futurist 
say the ancient practice of kings’ 
bail could make buyers and sellers 
feel safer about online transactions 
with strangers. Page 40 
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MORE AND MORE AMERICAN WORKERS aren’t showing up at 
the office. Their cubicles are vacant, their desktop 
PCs idle. 

Instead, they’re working at all hours of the day 
from coffee shops, conference rooms, customer sites 
and suburban telework centers. Take a look around 
your own corporate offices. There’s probably a lot of 
empty chairs. The average occupancy rate of com- 
mercial office space from 8 a.m. to 5 p.m. is between 
30% and 50%, according to Cornell University’s In- 
ternational Workplace Studies Program. 

The challenge for IT managers is how to support 
this ever-growing legion of far-flung workers with all 
of the tools and information they need to do their 
jobs, anytime, anywhere. For example, Cincinnati- 
based Procter & Gamble Co., a pioneer in business- 
and worker-agility programs, defines the workplace 
as “anywhere someone is trying to be productive, 
whether it’s a P&G location or not,” according to 
Mary Adam, P&G’s director of North American 
Workplace Services. 

Cigna Corp., which has 3,500 full-time teleworkers 
and 7,000 casual teleworkers enrolled in its eWork 
program, wants employees to work wherever it’s 
most effective for them to do their jobs, whether it’s 
a spare bedroom or one of Cigna’s corporate “touch- 
down” sites, which the company provides for work- 
ers without a designated office. 

“A higher proportion of employees is working on 
the fly, but the IT infrastructure at most companies is 
still assuming they come into the office every day,” 
says Michael Bell, an analyst at Gartner Inc. What IT 
needs to create and support is an “agile workplace,” 


| which Bell says is “all about choice, flexibility and 


COCO HSHSHSESEOSHSOSHEH ESOS HSEEE ESOS OOSSSOSES OSES SESH SSO SESESEESESESE SESE SESESERE 


ON-THE- 


| 


| changing nature of work. By 





Research shows that employees who 
could be classified as off-site workers work 
froma variety of places other than home 
Here's the breakdown 


BASE: 2,057 adults working at companies with 500 or more employees 


AMERICAN 


moving accountability for where and when work gets 
done out of the traditional office and to the employee.” 
Besides worker mobility, IT must also consider the 
2006, people will spend 
nearly 70% of their time working in teams — but not 
necessarily face to face, according to an agile-work- 
place study conducted by MIT and Gartner. That 


| means deploying more collaborative technologies, 


such as Web-based videoconferencing, that peri- 
patetic workers can easily and cheaply tap into, re- 
gardless of their location. 

In the current economy, experts say, the main fac- 


| tor driving telework and a more agile workforce is 
| cost pressure. Companies with formal telework pro- 


grams say they save money on real estate, although 
some studies indicate that IT costs are higher. 

In the first 12 months of its eWork program, which 
enables more than 10,000 employees to work from 
anywhere using all of the same IT tools they would 
have access to at a corporate office, Cigna saved 
$1,500 per person. In the second 12 months, the 
Philadelphia-based company saved $3,000 per work- 
er, according to Lynne Kelley-Lewicki, director of In- 
tegrated Workscape Strategies. 

At AT&T Corp., where 17% of managers have no 
office but instead work full time from home or a cus- 


| tomer location, real estate savings will total $35 mil- 


lion in 2003. Other financial benefits include 
$100 million in increased worker productivity and 
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$15 million in gains resulting from improved employ- 
ee retention and recruitment, according to Joseph 
Roitz, AT&T’s telework director. 

Overall, MIT and Gartner researchers estimate 
that through 2006, agile-workplace strategies will re- 
duce workplace and IT infrastructure costs by 10% to 


15%. But for IT, helping to create and support an agile | 


workplace isn’t just about setting up workers with 
laptop computers and at-home broadband network 
access. It requires a high level of cross-functional 
collaboration, navigating tricky company politics and 
fitting new technologies to employees’ work pat- 
terns. Here are four key tips from companies leading 
the way on the agility front: 


Don’t go it alone. 11, facilities, corporate 
real estate and human resources departments 
must share information and work together to 
create a seamless workplace experience for 
employees, regardless of their locations. 

In an unusual move, P&G combined its facilities 
and IT departments, cutting $500 million from its 
bottom-line operational costs. Among other things, 
the combined department introduced hoteling and 
hot-desking, where offices become a shared resource 
that multiple people can use. 

“We view the workplace as an integrated whole, 
including the chairs, desks, LAN jacks,” explains 
P&G’s Adam. “Before, if you were moving offices, 
you called one department to move your PC, another 
department to move your phone, and so on.” 

Now, all workers log onto P&G’s Web-based portal, 
known as Company at Your Fingertips, to schedule 
office moves, order cell phones, set up an audio- or 
videoconference, or request a plumber or an electri- 
cian to resolve a building problem. “We put all of these 
things together in the way that a user thinks about 
them — as tools to get their work done,” says Adam. 

Capital One Financial Corp. in Falls Church, Va., 
has transferred some IT professionals into its corpo- 
rate real estate department as a way to ensure that 
space and technology needs are considered in an in- 
tegrated way, says Chief Technology Officer Roy 
Lowrance. For example, the company has dozens of 
“telesuites,” which are conference rooms outfitted 
with state-of-the-art Web-based videoconferencing 
technology to accommodate Capital One’s highly 
collaborative, but highly mobile, corporate culture. 


Make telework a standard operat- 
ing procedure. Ad hoc telecommuting 
and under-the-radar work-from-home 
arrangements cost more money and cause 
a lot of headaches for IT. “IT has people 
coming in on dial-up lines and DSL. They have to 
prepare for all different security and access issues, 
and from a help desk standpoint, they’re getting a lot 
of calls from people who are far away and need to be 
coached through a lot of issues,” notes Tim Kane, 
CEO of Kinetic Workplace Inc., a Pittsburgh-based 
consulting firm specializing in telework and integra- 
tion of IT, real estate and human resources concerns. 
Kane is also president of the International Telework 
Association and Council. 
Kelley-Lewicki says Cigna “made a conscious deci- 
sion to grow eWork into an embedded service and 
not make it a program, which is something special or 
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CHANGING THE 
GAME WITHIT 


“If you want agility,” advises Capital One CTO Roy 
Lowrance, “don’t start with technology. Start with 
the company culture, then force technology and the 
company culture to work in harmony.” 

That's the way the strategic technology group within 
Capital One's IT organization assesses the potential of 
all new technologies. 

Lowrance says IT screens new technologies with a 
constant eye toward how people perform their work, and 
looks for what he calls “game-changing possibilities.” 

As part of the screening process, the IT department 
develops usage scenarios for all new technologies. A 
recent example is Web conferencing technology from 
PlaceWare Inc., which earlier this year was acquired by 
Microsoft Corp. IT considered how meetings are con- 
ducted currently and how employees’ behavior might 
change with Web technology that lets participants dy- 
namically share presentations stored on their laptops. 

“With PlaceWare, you log onto a Web site, and 
everyone sees the document or presentation dynami- 
cally. It means people don't have to predistribute docu- 
ments, and you don’t have an issue with managing 
people's attention, which you have when they're at a 
meeting and paging through paper documents distrib- 
uted to them before the meeting,” Lowrance notes. 

IT is developing a similar usage scenario for RDF 
Site Summary (RSS) technology as a possible e-mail 
replacement at Capital One. RSS is an XML format that 
enables users to aggregate information from a variety 
of sources into a single Web-based application. 

“What happens now is a lot of people publish infor- 
mation updates - about projects, meeting agendas, 
etc. - via e-mail. With RSS, they'd publish updates to a 
Web site, and there would be a browserlike client to 
view all of these updates in one place,” Lowrance says. 
Essentially, it would change the way the entire organi- 
zation communicates. 

“We constantly look at technology to make sure it's 
not just incremental,” he adds. “Anything that is not 
game-changing is not interesting.” 

- Julia King 


something that you subscribe to.” As an embedded 
service, eWork provides mobile workers with all of 
the same IT tools they would have if they were work- 


| ing at the insurer’s corporate office. These include a 


standard laptop and broadband network access to all 
necessary software applications and databases, re- 
gardless of whether the employee is at home, a com- 


pany hoteling facility or a customer site. 


As an e-worker’s needs change, different suites of 


| software can be automatically down- 


loaded, says John Duffy, a senior vice 
president at Cigna Systems. “As a guid- 
ing principle, you want to try and keep 
the e-worker process as transparent as 
possible,” he says. “You want to have 
the look and feel of the desktop the 
same at the office as at home.” 





AGILE TERMINOLOGY — 


What's “office hoteling”? Get up 
to speed on this and other terms for 
the agile workplace by checking the 
glossary at our Web site 
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Study work patterns, then adopt 

technologies and policies to fit. 

Before implementing new technologies, IT 

needs to discern how much mobility work- 

ers need in their jobs and whether the 
bulk of their work is done individually or collabora- 
tively. “If an organization is like Sun Microsystems, 
where workers can work anytime, anywhere, IT is 
going to have to put its greatest emphasis on any- 
where, anytime connectivity — things like remote 
servers and virtual private network capability,” says 
Gartner’s Bell. 

At Capital One, most work is accomplished in 
teams, with the company’s 8,000 knowledge workers 
spending an average of four to six hours a day in 
meetings or otherwise out of their individual offices. 
“Nobody can sit in an office all day and get his or her 
job done,” Lowrance says, noting that the IT at Capi- 
tal One’s new West Creek campus in Goochland 
County, about 15 miles west of Richmond, Va., re- 
flects that working style. Among other things, it in- 
cludes wireless LAN access throughout the facility, 
so employees can tap into e-mail or presentations 
from anywhere in the building, and dozens of team 
rooms equipped with Web-based videoconferencing 
facilities and electronic whiteboards. 

“T’m always thinking about how people work, 
what’s inhibiting work and looking for game-chang- 
ing possibilities,” says Lowrance. “If you want agility, 
don’t start with technology. Start with the company 
culture, then force technology and the company cul- 
ture to work in harmony,” he says. 


One size doesn’t fit all. It does little 


good to copy exactly another company’s 

best telework practices because each orga- 

nization has its own set of workstyles and 

unique culture, experts say. Consequently, 
each company needs to come up with its own tele- 
work strategy. Cigna, for example, provides the same 
set of tools to all employees, regardless of where 
they’re located. 

Meanwhile, after a yearlong telework pilot project, 
the Treasury Department’s Office of the Inspector 
General for Tax Administration is considering offer- 
ing workers different levels of telework services. The 
decision came about after outfitting all teleworkers 
with a high-end combination fax machine, printer 
and scanner at their homes and learning that most 
workers actually use only the printer. 

The agency also gave all teleworkers, who are 
mostly auditors working at various business sites, a 
standardized laptop computer, but later had to retro- 
fit many of the PCs to accommodate power users 
who have more demanding computing require- 
ments, says Joseph Hungate, CIO of the office. Re- 
gardless of the specific telework strategies compa- 
nies deploy, experts agree that all IT organizations 
have to redefine their domains well 
beyond the walls of the corporate of- 
fice. “There will be no real decline in 
this trend,” says Bell. “It may be 
paused now due to the economy, but 
it will continue, and the pressure 
will increase when the economy 
comes back.” D 
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Resilience: 


Here’s how IT can help your company | 
continuously reinvent itself. 


A turnaround, says GARY HAMEL, 

is transformation tragically 

delayed. In this month’s 

Harvard Business Review, 

Hamel and co-author Liisa 
Valikangas argue that in today’s 
turbulent times, turning a 

company around after the 

market slips out from under it 

might be too little, too late. Your 
company needs to continuously 

morph to meet new opportu- 

nities and challenges, to constantly build 
the future rather than defend the past. 
Hamel, director of the Woodside Insti- 
tute, a nonprofit research organization 
in Woodside, Calif., that focuses on 
management innovation, spoke with 
Kathleen Melymuka about resilience 
and its implications for IT leaders. 


You say it’s getting harder and harder for 
successful companies to stay successful. 
Why? However you slice the time scale 
— 15 billion years or 15 months — you 
find change is accelerating, and two 
tech-related things are driving that: raw 
processing power and our communica- 
tions capability. That puts enormous 
strains on institutions, yet somehow 
they don’t seem to be all that resilient. 


What is resilience? You can rejigger your 
supply chain without ever asking fun- 
damental questions about what busi- 
ness you're in. But that’s very different 





from having to deal with a busi- 
ness model that’s going toes up. 
If I’m in the traditional music 
industry, figuring how to get 
CDs more efficiently into the 
aisles of Best Buy isn’t going to 
solve my problems. If I’m Sun, 
a nimble supply chain won’t 
help me deal with Linux. Most 
companies have not had to face 
the challenge of a long-term, ir- 
reversible decline in the eco- 
nomic efficiency of their core business 
model, but more and more are facing 
that today. Strategic resilience will be 
the fundamental challenge. 


How is strategic resilience different from a 
turnaround? Typically, the work of re- 
newal only starts once a company is 

in crisis. IBM goes from making $6 bil- 
lion to losing $8 billion and realizes 

it needs to deliver solutions, not just 
products. But in all turnarounds, there’s 
an enormous amount of wasted energy. 
You pay a very high price for recogniz- 
ing the challenge so late. Renewal 
shouldn’t come in a once-a-decade 
cataclysmic burst. We want it built into 
the systems. We want it to be continu- 
ous, opportunity-driven and intrinsic. 


You say that, philosophically, companies 
are too invested in the goal of optimization. 
What's wrong with that? Many IT profes- 
sionals spend most of their energy im- 


—s 





proving transactional efficiency: the 
flow of goods through your supply 
chain, handling customer requests 
more quickly, figuring out how to do 
business with less inventory. Basically, 
it’s about better, cheaper, faster, which 
is fine. But almost all of those huge 
productivity gains have gone back to 
the customer in the form of lower 
prices or better goods and services at 
the same price. Only about 1% ever 
makes it to the bottom line. What is 
missed is the chance to use technology 
to create new value for customers. 
Where has your use of IT allowed you 
to create something so cool that you 
can raise prices? Deep strategic inno- 
vation is the only way you can create 
new wealth. IT needs to be seen as a 
positive force for business innovation, 
not process innovation. 


Give me an example. Why is it that when 
I go to check in at United Air Lines, 
there’s a special line for the best cus- 
tomers, but when I go to the supermar- 
ket, there’s a special line for the worst 
customers? Why don’t supermarkets 
have a line for people who spent 
$5,000 in the store last year? Why don’t 
they deliver superior service and carry 
out my groceries? IT folks need to look 
outside their industry and ask where 
IT has made the biggest difference 

to the customer experience, what we 
learn from that example and how [ can 
bring that back to my own context. 


How does a company begin? You can’t 
predict what the world will look like 

in 10 years, so you try a variety of 
things. Some will work. The crunch 
comes because in many organizations, 
it’s very hard to move resources from 
old things to new. All the resources are 
devoted to perpetuating legacy pro- 
grams. A young employee has a cool 
idea for a new merchandising ap- 
proach. He needs access to technical 
help, a small amount of money and 
consulting help. How does he get that 
money and talent? In most organiza- 
tions, it’s extremely difficult unless 
there’s a 90% chance of success. Ideas 
go up a chain of command, and rightly 
so. How do I divert at least a small 
amount into things that are more ex- 
perimental and have a chance to create 
new alternatives — and not just prod- 
ucts — new distribution channels, new 
customers, new pricing strategies? 


Has anyone found a way? [As part of a 
consulting engagement at] Shell, we 
created a secondary resource process 
to fund experiments. Anyone with a 
new idea can go to an eclectic peer re- 
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Be ra cad 
Spotting 
Strategic 

Decay 


Leaders often miss the signs when 
business strategies start to decay, says 
Gary Hamel. Answering these questions 
honestly will help you recognize strategic 
decay in your business while there’s still 
time to do something about it: 


= Does your strategy still defy 
industry norms and provide com- 
petitive advantages and excep- 
tional financial performance? 

m Are changes in the political, 
social or business world render- 
ing your strategy less powerful 
or relevant? 


uw Is the pace of improvement 
in key performance metrics 
slowing down? 

= Is increasing customer power 
eating up profits? 


view panel made up of contrarian 
thinkers and say, “I need funding to 
take this idea to the next step.” There’s 
a small, dedicated pool of capital for 
funding these things, and you’re guar- 
anteed to have an answer back in five 
business days. They have funded 
dozens of these, and they have deliv- 
ered economic returns as good or bet- 
ter than anything at Shell. 


What role should IT leaders play in building 
resilience into their companies? The chal- 
lenge for IT is to use the Internet to 
build internal markets for ideas, exper- 
imental capital and talent to dramati- 
cally decrease the time it takes to con- 
nect these things. Lots of companies 
have re-engineered business processes 
to reduce the time from order to cash 
flow. But now the challenge is to re- 
duce the time between idea and cash 
flow. That requires us to re-engineer 
not business processes but manage- 
ment processes, like capital budgeting 
and strategic planning. I think IT can 
play every bit as big a role there as it 
did in the supply chain. D 





Melymuka is a Computerworld 
contributing writer. You can contact 
her at kmelymuka@yahoo.com. 





This is the latest in a series of monthly discus- 
sions with Harvard Business Review authors 
on topics of interest to IT managers. 
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data lives: Oracle, Microsoft or IBM. It works in real time, across platforms: Linux, Windows, UNIX. Insight 


is yours. On demand. Faster than ever. For a DB2 Information Integrator Kit, visit ibm.com/db2/integrate 
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Here's a modest 
proposal for 
a system that could 
add more trust to 
e-commerce. 


By Colm Brannigan 
and Peter de Jager 


-COMMERCE is here to 
stay. We need only look at 
the history of Dell Inc., 
Amazon.com Inc. or eBay 
Inc. for undeniable proof 
that it’s a growth industry. 
But could it be better? Has the media 
coverage of e-commerce flaws as they 
relate to scams, identity theft, massive 
violations of privacy and lax security 
resulted in a fundamental lack of trust 
in e-commerce? 
In a 2002 survey conducted by 


www.computerworld.com 


equivalents of the greeters at Wal-Mart 
who are there to direct you toward 
what you need. 

a Order status. Main Street has an 
advantage. When you buy something, 
you usually take it with you. The entire 
trade is completed in minutes. E-com- 
merce sites must compensate for de- 
layed delivery with status updates. For 
example, Canada-based online retailer 
Chapters.Indigo.ca sends e-mails not 
only to confirm that an order was 
placed, but also to inform customers 
that shipments have left the warehouse. 
FedEx.com uses the Internet to let cus- 
tomers check the status of shipments at 
any point in its delivery process. In 
both cases, e-trust is increased via the 
flow of trade information. 

@ No charges until shipped. All 
e-commerce sites could improve cus- 
tomer service and trust by delaying 
credit card charges until the order has 
shipped. These are simple approaches 
to e-trust, but the real issue isn’t the 
trades that go well, but the trades that 
go astray. How is the customer treated 


Yonkers, N.Y.-based Consumers Union 
of the United States Inc., only 29% of 


when a problem occurs? 
Maybe we need something like the 
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1,500 U.S. Internet users polled said 
they trust Web merchants — far fewer 
than those who trust brick-and-mortar 
retailers. Society has only begun to ex- 
plore the real potential of e-commerce. 
While many people are content to pur- 
chase books and CDs from well-known 
sites such as Amazon.com, they are 

less likely to delve into on- 

line auctions because they 

don’t trust the system, nor 

do they buy from smaller, less-well- 
known sites, even when those sites of- 
fer a better deal. 

E-trust comes in two flavors: trust in 
the trade and trust in the trader. In- 
creasing trust in the trade requires that 
we replicate what customers experi- 

nce when they walk into stores on 
Main Street. To do that, Web sites need 
the following features: 

@ Security and privacy. A cus 
tomer’s credit card information is no 
more secure on Main Street than on a 
Web site, but because of various online 
security breaches, the perception is 
that the Internet has no regard for pri- 
vacy or security. We know the solution 
to this problem. The necessary privacy 
and security measures are well de- 
fined; we just need to implement them. 

aw Ease of access and personai- 
zation. When customers can easily 
find what they’re looking for, they feel 
welcome and comfortable, and they’re 
more likely to hang around to buy 
something. Think of user personaliza- 
tion and user friendliness as the Web 


pizza delivery strategy: Thirty min- 
utes, or it’s free! Would consumers em- 
brace e-commerce more strongly if a 
delay in shipping was compensated by 
a 5% to 10% reduction in the sale price? 
What happens when the goods de- 

livered weren't what was ordered or 
were damaged in transit, or when an 

item was back-ordered and 

never delivered? None of 

these problems is uncom- 
mon. The easier it is for consumers to 
gain satisfaction from an organization, 
the higher their level of trust in it. This 
is as true for e-commerce as it is for 
Main Street. 


Dispute Resolution 
Given the nature of the Internet, in 
particular the distance between buyer 
and seller, as well as the prohibitive 
cost of legal action across jurisdiction- 
al boundaries, how does your e-com- 
merce site resolve disputes? Does the 
customer always lose? Or do you pro- 
vide some form of alternative dispute 
resolution (ADR)? 

The primary reason it’s difficult to 
get people to trust the Internet is be- 
cause it’s, to use a tired cliché, like the 
Wild West. When things go horribly 
wrong, consumers are on their own; 
they have no safety net. They know 
this. Any site that recognizes this in- 
herent weakness of e-commerce and 
goes out of its way to provide con- 
sumer support via a dispute resolution 
process by a neutral third party will in- 
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Benefit From the Most Comprehensive Program - ‘ ie 
No other storage event gives you a program so rich with experiences - whether they're => IDC Storage Analyst Briefing 


industry and pre-certification primers, general sessions, tutorials, opportunities to see Learn the State of the Storage Market: 
technologies at work ... or the rare chance to talk to the very engineers that make them work. i 
2004 and Beyond 


Easily Navigate an Agenda Packed In this special briefing,* IDC’s key storage analysts will present the 


With Choices and Learning Experiences latest industry data, insights and analysis on trends affecting storage 


No other storage event provides an agenda woven with so many logical choices - choices that vendors. In these interactive presentations, IDC’s analysts will bring 


allow you to tailor your valuable time to your very specific needs. (See the full agenda at you up to speed on the current and future state of markets for stor- 
wenwsrwnusa.com.) age arrays, SAN infrastructure, storage components, storage man- 


agement software, and storage services. Analysts will also address 
Get an Education Endorsed by the SNIA oe 
y © New technology adoption (SATA, iSCSI, 4GB FC) 
No other storage event offers a learning experience developed and sanctioned by the industry's * Emerging storage architectures (content aware storage, 
most influential storage association - highlighted by the SNIA-delivered technical tutorials. nearline storage, tiered storage) 
* New storage network infrastructure (virtualization, networked storage 


Meet Experts and Shop in the Largest Available * Evolving paths to market for storage solutions 


Storage-specific Solution Mall *This session is intended for IT vendors; no non-IDC analysts permitted 


No other storage event allows you to see all the players and solution providers in one place. in this special session. 
It’s literally your one-stop “solution mall.” 


See SNW’s Flagship Interoperability & Solutions Demo Enjoy Orlando’s NEW 
JW Marriott Grande Lakes Resort! 


No other storage event gives you: 
¢ 40-plus SNIA member companies collaborating 
on integrated solutions No other storage event 


* the opportunity to meet wee : Ee : allows you to learn, 


leading experts and engineers | ‘ Sas network and enjoy the 


* access to $25 million worth . a conference in such a 
of proven technology in action DEMO NETWORK relaxing, comfortable 
[tage mare Sarre WCE and unique setting. 


For more information and to register, 
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Monday, October 27 

(Pre-Conference Activity and Tutorial Sessions) 

9:30am-11:30am _ Industry Primer, Career Development and Skills Development Tracks 
1:00pm-5:30pm SNIA Tutorial Sessions 

1:00pm-6:00pm Golf Outing at the Ritz Carlton Golf Course 

7:00pm-9:00pm Welcoming Reception 


“Tuesday, October 28 
(General Conference - Day One) 


Earlybird Registration On-Site Registration 


(through September 12) (after September 12) 
$895 


Options for IT Eni rs* 
General Conference Package (Oct. 28, 29): 


(Includes General Conference sessions, Expo, 
als and Receptions) 


7:15am-8:15am 
8:15am-9:15am 
9:15am-12:15pm 
12:15pm-1:30pm 


Continental Breakfast 
ind Visionary Presentation 


Networking Luncheon 


Total 4-day Package (Oct. 27, 28, 29, 30): 
(Includes General Conference Package: Technical and 
Business Tracks; SNIA-produced Tutorials; Pre-certification 


$1,290 


1:30pm-3:50pm 
4:00pm-5:30pm 
5:30pm-8:30pm 


General Sessions 
Technicai, Technical/Business and Business Tracks 
Expo and Buffet Dinner, Interoperability and Solutions Demo 


Refresher Courses) 


Options for IT Vendors** 
Total 4-day Package (Oct. 27, 28, 29, 30): $1,290 $1,690 


(Available to Sponsoring Vendors and their Resellers/Integrators; industry Consultants; and Storage Solutions implementors, 
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Wednesday, October 29 


(General Conference - Day Two) 


7:30am-10:30am !DC Breakfast Briefing 
8:15pm-Noon General Sessions 

Noon-1:30pm Expo and Buffet Lunch 
Noon-7:15pm Interoperability & Solutions Demo 
1:35pm-3:35pm General Sessions 
3:45pm-5:15pm Technical, Technical/Bus: 
5:15pm-7:15pm Expo 

7:30pm-9:00pm Gala Evening 


Thursday, April 17 

(Tutorial and Breakout Sessions) 

7:30am-8:30am Continental Breakfast 

8:30am-11:45am Technical, Technical/Business, Business and SNIA Tracks 
11:45am Conference Concludes 


Sponsori ndor Package: 


* IT End-Users are defined as those who are attending Storage Networking World with an intent (and an IT spending budget) to potentially buy/pur 
chase hardwere/software/services/etc. from our conference sponsors and exhibitors. As such, account representatives/business development from 
any company, analysts, ventu alists, and anyone else attending who does not have IT purchasing influence within their organization are 
excluded from the “IT End-User” designation. Enforcement of this interpretation and policy is at the sole discretion of Computerworld. Questions? 
Please call 1-800-883-9090. 

** Vendors are encouraged to participate at Storage Networking World through sponsorship. (Details are available by calling Ann Haris at 
-508-820-8667.) Alternatively, vendors (as well as venture capitalists, equity analysts, and other “non-IT end-user” professionals as defined by 
Computerworld), may apply for registration at the “non-sponsoring vendor” rate. Determination of what constitutes a “non-sponsoring vendor” 
registration is at the sole discretion of Computerworld. You will also be required to adhere to our non-solicitation policy posted on-site. 
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Travel and 
Accommodations 


IDG Travel is the official travel = IDC 
company for Storage Networking > J\3 
World. They are your one-stop shop 

for exclusive discounted rates on hotel accommodations. 
To reserve your accommodations: 


visit www.etcentral.com OR 
call 1-800-340-2262 (or 1-508-820-8159) 
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The Pre-Conference Golf Outing at The Ritz-Carlton Golf Club located 
adjacent to the JW Marriott Grande Lakes Resort, is complimentary 
($165 value) for registered [T End-Users (other participants, including 
sponsors and vendors, may play on an “as available” basis and are 
responsiole for all applicable golf outing expenses). 


For details: contact Chris Leger at 1-508-820-8277 


’ 4 SIN 
or email Nanette Jurgelewicz at 
nanette_jurgelewicz@ computerworid.com 


Awards Ceremony: Wednesday, 
October 29, 3:05pm, SNW Main Stage 


For more information and to register, 
visit WWW.snwusa.com/print or call 1-800-883-9090 (1-508-820-8159) 
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The Credibility Gap 


How often do you trust e-commerce Web sites? 


64% 


_ Only some 
of the time 
or never 


always or most 


of the time 


[B% 


Don’t know/ 
no answer 


Base: Consumer WebWatch telephone survey of 1,500 
U.S. Internet users, 18 years or older. Percentages 
don’t total 100% because of rounding. 


__ Applying 
‘Kings’ Bail’ to B2B 


SSSSSSSSSSSSSSSSSSSSSSSSeSseeeseeseeseeeeeeeeeeee 


Kings’ bail can secure 
any transaction, including 
business-to-business 
e-commerce. The central 
idea is to construct a 
purely financial exchange 
that’s worth more than 
the final exchange of 
goods and that will be 
completed if either party 
fails to comply with the 
original deal. 


For example, if a seller 
is exporting $500,000 
worth of goods to a buyer 
it has never done busi- 
ness with, then both par- 
ties will deposit $1 million 
into a neutral kings’ bail 
account. When this mutu- 
al deposit is 100% con- 
firmed, it’s safe for the 
seller to ship the pig iron, 
truck parts, chemicals or 
pork bellies. 


SOHOHSSSSSSHSSSSSSHSSHESSHSSEHSSESSELESEHEOSEESESE 


The seller knows that 
its trading partner will 
pay for the $500,000 
shipment, because if it 
doesn’t, the buyer will 
lose its $1 million. For the 
same reason, the buyer 
knows the seller will ship 
the goods. 


Kings’ bail doesn’t real- 
ly create trust; it merely 
holds people to their 
word, which in e-com- 
merce is a good enough 
substitute. 


- Colm Brannigan and 
Peter de Jager 


B2B BEST PRACTICES 


Companies describe their current techniques 
for building trust in B2B e-commerce 


QuickLink 30028 
www.computerworld.com 








evitably build consumer confidence. 

Of course, there’s another way to in- 
crease trust in your e-commerce activi- 
ties — become a brand recognizable by 
everyone. That leads us to the real prob- 
lem of e-trust: How can we trust those 
we don’t know? How can we protect 
ourselves from a trader with no desire 
to trade fairly, or convince a potential 
customer that we’re not a scam artist? 


Escrow and Honesty 


Escrow is a partial solution. In escrow, 
a neutral third party holds funds until 
the goods are received and verified 
Then the buyer authorizes the pay- 
ment. Escrow arrangements, such as 
those made through Escrow.com, are 
fairly effective, take relatively little 
time to implement and may cost 0.85% 
to 6% of the value of the transaction. 
As with all third-party services, there 
are minimum costs. Escrow.com charges 
at least $15 per transaction. Therefore, 
transactions of $100 or less suffer at 
least a 15% surcharge. This is enough 
to preclude many casual traders from 
taking advantage of the added security. 
The real problem with escrow is that | 
it can provide only an asymmetrical 
assurance of honesty. Obviously, no 
seller with the intent to defraud a buy- | 
er will enter into an escrow agreement. 
Do dishonest buyers avoid escrow? 
Consider the following situation: If 
a company wished to guarantee 100% 
e-trust in all transactions, it could 
attach escrow to every sale, allowing 
customers to pay only if they’re satis- 
fied. Internet sales would skyrocket. 
However, buyers might take advan- 
tage of the asymmetry of escrow. It’s all 
too easy to accept a shipment, even 
sign for it, and then claim it wasn’t re- 
ceived and withhold payment. The sell- 
er, even though it has signed receipt of 
goods, must now take expensive legal 
action to force payment. Any bets on 
how many times this might happen? 
Escrow fails because it compels the | 
seller and not the buyer to trade fairly. 
We require a tactic that forces both 
parties into honesty. 


Kings’ Bail 
Such an arrangement has existed for 
thousands of years, dating from the 
days when kings would voluntarily ex- 
change hostages to enforce a deal. We 
call it “kings’ bail.” 

We typically think of a hostage as 
someone who is taken by force and 
held until a ransom is paid. Sometimes 
the ransom is financial, or it may bea | 
demand that ancther, usually more 
powerful, party take a specific action, | 
such as releasing prisoners or remov- | 


ing troops from a disputed territory. 

However, kings would also voluntar- 
ily exchange hostages, usually sons and 
daughters, in order to force future 
compliance of a contract or treaty. 
Since both parties had placed some- 
thing of great value at risk, both were 
motivated to honor the agreement 

Casual traders on the Internet could 
easily enter into such an arrangement. 
Consider a buyer and a seller wishing 
to enforce complete honesty in the 
purchase of a toner cartridge worth 
$50. Both parties deposit $500 into a 
computer-controlled, neutral kings’ 
bail account. The “hostage” is worth 
more than the trade. The seller now 
sends the cartridge; the buyer sends 
the check. 

If either party fails to receive what it 
expected, it can instruct the kings’ bail 
service to send both $500 hostages to a 
randomly chosen charity. (And neither 
party will receive the charitable receipt 
for this forced donation.) If both par- 
ties are sufficiently satisfied with the 
transaction, they instruct the kings’ 
bail service to return the hostages. 

The advantage of kings’ bail over the 
traditional escrow service is that be- 
cause financial hostages are taken from 
both sides, neither party can cheat. 

Why would anyone in his right mind, 
especially the buyer, enter into such an 
arrangement? For the same reason kings 
were willing to place their children into 
hostage situations: They wanted to cre- 
ate an honest contract. The exchange 
of hostages provided a fully symmetri- 
cal assurance of future compliance. 

Another fair question is, Why would 
anyone voluntarily accept an addition- 
al $500 loss? The honest answer is that 
no one would, but it’s the threat that 
someone can do this that keeps every- 
one honest. Kings’ bail places both 
buyer and seller in a situation where 
it’s in their best interests to successful- 
ly complete the transaction. 

E-commerce involves trading among 
geographically distant partners, usually 
well beyond the reach of the legal sys- 
tem. As such, it poses a unique chal- 
lenge if the objective is to trade with- 
out risk of loss. Instilling e-trust by 
doing little things, like building user- 
friendly, secure, private, interactive and 
pleasant sites, is a good first step. But 
there’s a pressing need to strike at the 
heart of the e-trust issue. We’re dealing 
with strangers. We must find innovative 
ways to force them to trade honestly. D 





Brannigan, an ADR mediator, can be 
reached at colm@mediate.ca. De Jager, 
a futurist and speaker, can be contacted 
at pdejager@technobility.com. 
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Fuld Offers Free 
Search Tools 


Fuld & Co., a Cambridge, Mass.- 
based research and consulting 
firm, has introduced the Fuld In- 
telligence Toolbar ( www. fuld. 
com/toolbar), which provides tar- | 
geted links and sites through its 
Internet Intelligence Index to 
dozens of business, industry and 
international resources. Anyone 
can use the free tool to find com- 
petitor intelligence sites, links to 
experts and initial public offer- 
ings, and annual reports from 
public companies. 


HIPAA Compliance 
Slow in Coming 


Health care organizations are un- 
der the gun to meet the Health In- 
surance Portability and Account- 
ability Act's Oct. 16 deadline for 
Transactions and Code Sets (TCS) 
standards, which are standards 
for electronically transmitting 
health insurance claims. Accord- 
ing to the summer 2003 quarter- 
ly survey conducted by the Health- 
care Information and Management 
Systems Society and Phoenix 
Health Systems, executive support 
for meeting compliance remains 
strong. However, all sectors are 
less optimistic about being able to 
accept and transmit all transac- 
tions by Oct. 16 than they had in- 
dicated in the spring survey: 


79% 
68% 
86% 


ya 
46% 
63% 


PONDEN 


Here are some other key points 
from the summer survey: 
@ Respondents ranked “not 
enough time” as the top reason 
for not ting the TCS deadline. 


@ Fewer half of payers and 
providers have completed the re- 
quired external TCS testing with 
trading partners. 


@ Respondents said lack of coop- 
eration and communication 

among health care companies re- 
mains an obstacle to meeting the 





October deadline. 
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The Forgotten Side 
Of Outsourcing 


F ONSHORE AND OFFSHORE OUTSOURCING 

is the new wonder drug, “human factors” should 

be listed as both a benefit and a side effect. Hu- 

man factors are one of the most important parts 

of any outsourcing effort, particularly when the 
outsourcer is located offshore. To proceed successfully, 
you should carefully consider the people issues from 
both sides: benefits and drawbacks. 


Benefits 


Outsourcing can supply your 
organization with highly 
specialized skills on a part- 
time basis. Most CIOs find it 
difficult to justify filling pre- 
cious openings with staffers 
whose technical skills are re- 
quired only intermittently. 
Since IT is the outsourcer’s 
primary focus, any staffers 
transferred to the outsourcer 
will have expanded career 
opportunities — to develop 
highly specialized skills and 
broaden their experience 
across multiple industries. 
Outsourcing also provides 
an opportunity to transfer 
some administrative costs 
and headaches to your outsourcer. You 
won't have to waste precious months 
“managing out” nonperforming staffers. 
And with fewer people to manage after 
outsourcing, your organization will re- 
quire less time for human resources man- 
agement and administration. 


Side Effects 


You can overoutsource and lose your de- 
livery skills. Reckless outsourcing can 
strip your organization of the skills re- 
quired to be effective. If you outsource 
everything, you'll also strip your organi- 
zation of its ability to use leverage on 
and control the outsourcer. 

The outsourcer’s culture may not fit 
yours. One outsourcer introduced a 
group of hard-driving Northeasterners 
into a conflict-avoiding, consensus- 
oriented Midwestern company. Misun- 





derstandings and hurt feel- 
ings were rampant, until 

the outsourcer’s staffers 
were coached to soften their 
approach. 

Outsourcing can cause 
fear and dysfunctional be- 
havior in your remaining 
staff. Other departments may 
see IT being outsourced and 
worry that they may be next. 
(One textile firm, after out- 
sourcing its IT department, 
found its fashion designers 
discussing the merits of 
moving to New York to avoid 
being outsourced.) 

Outsourcing creates a le- 
gal morass of employment 
regulations and layoff notifi- 

cations, as well as compensation and ben- 
efits-continuation issues. In order to 
avoid nasty litigation, get competent legal 
counsel from the start. 
Misunderstandings about outsourcing 
can generate bad publicity. One compa- 


| ny’s outsourcing plans were leaked to a 


state senator, who was told that the com- 
pany was bringing in illegal aliens under 
false visas to replace U.S. citizens. The 
senator was prepared to take the issue to 
the statehouse, until the company cleared 
up the misunderstanding. 

Before you outsource, put a compre- 
hensive plan in place to deal with human 
factors. This is even more essential if 
you're going offshore. 

® Keep critical skills on your staff, such 
as architects, planners and program/proj- 
ect managers. Don’t outsource your 


! team’s ability to be successful. In addi- 





tion, for offshore development projects, 
make sure that about 30% of the staff will 
be located onshore. 

@ Include human resources, legal and 
public relations departments from the 
beginning. Legal will help you navigate 
the complexities of federal, state and lo- 
cal employment laws. Human resources 
can reassure your staff, and public rela- 
tions will deal with major internal critics 
and the community. 

@ Interview the outsourcer’s staff thor- 
oughly when selecting who will be as- 
signed to your account. Make sure they 
fit your culture, in addition to having the 
right expertise. Require the outsourcer to 
designate a backup for key people, in the 
event of turnover. 

@ Create a joint program team with 
your outsourcer. Treat all team members 
equally in terms of accountability, super- 
vision and deliverables — whether 
they’re on your staff or on the out- 
sourcer’s. Rotate remote staffers through 
your facility so they become recognized 
team members, not just faceless voices 
on the telephone. The most successful 
outsourcing engagements involve long- 
term partnerships in which everyone is 
committed to program success. Offer in- 
centives to promote cooperation. 

@ Take extra care of remaining staffers. 
Describe career opportunities explicitly. 
Give as much interesting work, recogni- 
tion and other perks as possible. Offer re- 
training when job responsibilities change 
significantly. Keep your ear to the ground 
for rumors, and squelch them before they 
create unnecessary apprehension. 

Most articles on outsourcing empha- 
size how much money you can save. But 
don’t neglect the human factors. They 
may not visibly affect your return on in- 
vestment, but they’ll definitely affect 
your outsourcing program. 

Whether you insource, outsource or go 
offshore, people are still your company’s 
most important asset. And regardless of 
their location, they'll ultimately deter- 
mine your success. D 
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IT Careers: Educators Push to Stay Ahead 
of Technology Requirements 


hether enrclling this fall 

in degree or certificate 

programs at Carnegie Mellon 

or at Southeast Missouri State 

University, IT professionals will have 

more diversity in course work 

and in specialization than 
ever before. 


PATH 
er LUTE 

Most every regional university 

across the nation offers some type 

of information technology or 

computer science degree or 

concentration. For students at the 

University of Alabama-Huntsville, 

the focus is on smail classes taught 

by tenured faculty. At Southeast 

Missouri State, students are able to 

focus on computing for industrial 

g applications but also for specializations in 

telecommunications and utilities. George 

Mason University in Washington, D.C. 

is pushing to meet the requirements 

for graduate and undergraduate 

students working in the defense and 

security arenas. 

Se Ee : 
Tita git) According to Dr. Peter Raad, 
director of the Hart eCenter and 
managing director of The Guildhall 


at Southern Methodist University, 
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Estimated time remaining to your next promotion: 
5 years, 6 months, 15 days, 3 hours... 


The Graduate School, USDA can help speed up your career. 
We offer high-quality, hands-on, affordable IT training in 
state-of-the-art computer labs. Our experienced faculty 
can teach you everything you need to get you reach 


your IT career goals. 


GRADUATE 
SCHOOL™ 


academia tends to respond to educational needs rather 
than lead. The establishment of SMU's digital gaming 
certification program breaks that mold. “We believe that 
the technologies of digital game development are 
the fundamentals of the first new academic discipline 
of the 21st century,” says Raad. “To some extent it's about 
jobs — there are very good jobs (projected at 5,000 a year) 
waiting for people with the education that The 
Guildhall provides.” 


For the highly rated programs, such as U.S. News 
& World Report's #1 undergraduate program at 
Rose-Hulman Institute of Technology (2004), there 
have been more significant changes designed to meet 
today’s business requirements but also to preserve the 
United States’ leadership in computing and software. 
Cary Laxer, professor and head of the computer science 
and software engineering degree programs, explains 
that by adding the software engineering degree 
program this year, Rose-Hulman is able to return 
the computer science degree to a more theoretical 
emphasis. This kind of approach, he believes, is 
critical for the United States to remain at the forefront 
of discovery and innovation in computing. 


“The software engineering degree is something 
companies are looking for,” Laxer says. “Nearly 
every engineering discipline involves writing code 
these days, but software engineering is for those 
individuals who will be writing hundreds of thousands 
of lines of code for a project.” 


Learn Cutting-Edge 
IT Skills Online 


10 Certificate Programs 
50+ Courses 


Another distinction for Rose-Hulman is that the school 
recruits for a freshman class — not for specific majors or 
disciplines. It's the same approach as is used for another 
U.S. News & World Report ranking school, Harvey Mudd 
College in Los Angeles. “We find that 30 to 40% of the 
freshmen will change their majors while they're here, 
so we are selling all of our programs,” Laxer says. 


The school’s reputation is based on more than 
the technical side, too. Laxer reports that the largest 
department at Rose-Hulman is humanities; students 
are required to take three years of humanities credits 
just as they were 25 years ago. “Probably one of the 
biggest changes we've found for students in looking 
for jobs is that companies have more distinct 
personalities — that fit between company and student 
is more important than ever.” 
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Whether you need degree 
credits or advanced professional 
development options, we have a 
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NET2S is a lead: international e 
business, information technology 
ication infrastr 
ing firm. We are « 
seeking for the following positions: 


* Sr. Tibco (RV, Hawk, Ingetration 
Manager) Developer 
+ IT Risk Mgmt Security A 


Developers 
+ NET Architect 


All positions require BS/MS degree 
with a minimum of 2 to 3 years of 
exper in the field. Must pos- 
sess ent communication 
skills as well 


NET2S, 82 Wall Street, Suite 400. 
New York, NY 10005; Fax: (212) 
279-1960; Phone (212) 279-6565; or 
Email: jobus-ny@net2s.com 


Siebel! Consultant 

Design and implement cus- 
tomized Siebel and Customer 
Relationship Management solu- 
tions for clients. Must have 
Bachelors Degree in Software 
Engineering or related field & 
two years of experience or two 
years of experience in a related 
position w/ability to use: Siebel 
at all stages of development 
including Siebel EIM, EAI & 
Siebel Architecture. Must be 
willing to travel. 40.0 hrs./wk 
9:00 AM — 6:00 PM Applicants 
send cover letter and resume to: 
Cyber Korp, Inc., 400 W. Lake 
Street, Roselle, iL 60172, Attn 
Latha 


Technology 


Healthcare 


er 22 - 24, 2003 
ott Wardman Park 
Washington, D.C. 


Graphic Designersfor Sanborn 
Inc.'s Charlotte Office: Dsgn & 
develop (1) CAD db w 
AutoCad programming/Lisp 
‘outines, MDL tools & Micro- 
ation/WinNT to edit GIS 
ographic Info Sys) digital 
mapping data; (2) image pro- 
cessing w/ Adobe Photoshop 
imagery sw for color balance 
contrast enhanc’mt & pixel 
editing to clean orthorectified 
digital aerial images, & collect 
seamline for image mosaic w 
Intergraph's IRAS-C & Ortho- 
PRO; (3) customiz'n routines & 
automat’n product'n process. 
40h/wk, 8 to 5, 2 yr wk exp in job 
offered or in any posit'n w. 
Adobe Illustrator & Photoshop 
Resume to Gary Eaton 
at geaton@sanborn.comor fax 
704-347-4515. Only US workers 
defined in 20 CFR 656.3 can 
apply. 


SAP Project Mgr. - sought by int’! 
freight fwdg co. in Miami, FL 
Req'd to design, implement, & 
coord. installation of SAP sys- 
tems. Maintain/modify/integrate 
systems for operating efficiency 
& compatibility. Troubleshoot & 
update IT mgt and provide end- 
user support. Must have Bach 
Deg or equiv. in Comp. Sci. or IT 
field & 3 yrs exp in job offd or 3 
yrs rel. exp as Sys. Analyst/ 
Admin. Must have working 
knowledge of Informix, UNIX 
and SAP modules. Send 
resumes to Vincent Kieffer, IT 
Mgr. LATAM, Panaipina, Inc. 
3505 NW 107th Ave., Miami, FL 
33178. 


Software Engineers 
Openings): For co. specializing 
in mktg & mnfg of computer 
software responsible __ for 
designing, &/ implementing key 
complex product enhance- 
ments/new features. Research 
new feature's concepts, estab- 
lish plans & coordinate them: 
analyze problems & suggest 
innovative solutions; design & 
test plans; train & review 
design work of programmers 
Req's: B.S. Deg, or equiv, in 
Computer Science, Engin- 
eering or a related field. 4 yrs 
exp in job offered or 4 yrs of 
programming exp. Exp must 
incl design, analysis, trou 
bleshooting, testing & support. 
Prof in C++, Visual C++, Visual 
Basic, SQL Server & COM 
40hrs/wk. Send res. to M-1 
P.O. Box 17182, Phila., PA 
19105. 


Z3 Technologies, Inc. a fast 
Growing software firm is looking 
for a Computer consultant 
Should have bachelor’s degree 
in computer science/related field 
with 2 years experience in 
Requirement Analysis, Design 
and development. Resolving the 
technical issues. Programming 
in Java, J2ee, Jsp, Corba, Rmi. 
C, C++, EJB, XML and 
Weblogic. We accept foreign 
education equivalent of the 
degree, or the degree equivalent 
in education and experience 
Send resume to Z3 
Technologies Inc 1803 
Shepherd Ct 335 Waukesha, 
WI-53186 
resumes@z3tech.com 


Oracles DBA to support, main- 
tain, monitor performance, trou- 
bleshoot Oracle Applications 
and databases 24x7 for the tele 
com. industry using Oracle tools 
like OEM, Statspack, Tkprof. 
BMC products, SQL navigator & 
backtrack Support/  perfor- 
mance tune CRM Siebel appin 
queries on Oracle databases 
and troubleshoot _ interface 
issues Maintain application 
code in PL/SQL & Shell Scripts. 
Use Siebel tools/ SQL navigator 
for development and version 
contro! tools (Harvest) to main- 
ain code. Plan capacity, per- 
form database backup using 
SQL Backtrack in Vertias envi- 
ronment, develop data recovery 
migration and sync _ procs. 
Develop database and appin 
upgrade strategies. Implement 
security stds practices for 
database security using Sudo 
MS in Comp. Applications or 
equivalent + 2 yrs. exp. In job 
duties. Comp. salary. Apply to 
Netserv 6580 Jimmy Carter 
Boulevard, Norcross, GA 30071 
with proof of perm. work auth 


Software Engineers to analyze 
design develop, implement 
appls using Java, C++/C, Peri 
Shell Script, JOBC, VB, Pro*C 
Oracle, Dev 2000, SQL Server 
on UNIX/Windows platforms 
perform unit/integration testing 
performance tuning and query 
optimization; interact with clients 
to ascertain functional/tech 
reqs.; provide customer support, 
feedback; debug and __ trou- 
bleshoot; train team members) 
end users. Require: M.S. or for- 
eign equiv. in CS/Engg.(any 
branch) with 1 year exp. in IT 
Travel involved. High salary. F/T. 
Resume HR Compsoft 
Technology Solutions Group. 
Inc 11. N= Roselle Rd 
Schaumburg, IL 60194 


Horizon Companies, Inc. is look- 
ing for system analyst, IT profes- 
sionals. Minimum requirement is 
BS plus IT experience. Skills in 
VB 5.0, Forms 4.5, SAP, 
PeopleSoft, Oracle & Oracle 
Financials, AP, AR, GL pre- 
ferred. Apply at 2025 Lincoln 
Hwy, Ste. 322, Edison, NJ 
08817 EOE 


Infomerica is looking for sys- 
tem/programmer analysts, soft- 
ware/project engineers & com- 
puter consultants working at dif- 
ferent sites (travel required) 
Candidates must have BS with 
-year exp. in IT fields. Skills of 
Informix, Java preferred 
Send resumes to: 
info@infomericainc.com 


IP ARCHITECT, SR 
Hauppauge, NY. 
LAN/WAN tech = arch 
Satellite/Comm Co 

data ntwrks, troubleshoot 
update & provide tech sup- 
port. Must have Master's Deg 
or equiv in Optoelectronic Sys 
& 2 yrs exp in job offd or 2 yrs 
exp as IT Specist/Consit 
Must be exp'd in VP Ntwrks, 
Frame Relay, Layer-3 Switch- 
ing & Must be CISCO Cert'd- 
CCCP & CCNP. Send 
resumes to: Vice Pres., HR 
Netsat Express, Inc., 45 Oser 
Avenue, Hauppauge, NY 
11788 


PROGRAMMER ANALYSTS 
req'd for Worth, IL office 
Design & Develop software 
applications using Oracle, 
XML, UML, C++, Sybase, 
Interwoven, Coolgen, Clear- 
Case, ClearQuest, PVCS, 
UNIX. Bachelors req'd in 
Computers, Engineering, math 
or any related field of study +2 
yrs of related exp. 40 hrs/wk 
Must have legal authority to 
work permanently in the U.S 
Send resume to HR Manager, 
CPR Enterprises, Inc., 7159 
West, 111th St, Worth, IL 
60482 
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Software Programmer: Analyze 
& design core business modules 
using PowerBuilder, Visual 
Basic, SQL Server, XML; write 
stored procedures; write scripts 
& report templates for 
CathSource, HeartSource, & 
OrthoSource applications; cre- 
ate data extracts & develop doc- 
umentation for user's guide 
Req. Bachelor's or foreign 
degree equiv in CS, IT or related 
plus 2 yrs work exp in job offered 
or in related occupation as 
Programmer, Consultant or any 
suitable combo of edu., training 
and/or work exp. Send resume 
to Goodroe Healthcare 
Solutions, Inc. 100 Crescent 
Centre Pkwy, Ste 720, Tucker, 
GA 30084 Ref JB 


Software Engineer, Sr. 
(Biomedical Research). 
Job site: Valencia, CA 
Send resume to Alfred 
E. Mann Foundation for 


Scientific | Research, 


attn: Karen Morris, 


28460 Avenue Stanford, 
Suite 215, Valencia, CA 
91355. 


PROGRAMMER/ANALYST 
Plan, develop, test & docu- 
ment computer software 
using XML, JSP, EJB 
JDBC, XSL, Java Servlets, 
WebLogic and WebSphere 
with ORACLE & DB2 data- 
bases in Windows and UNIX 
environments. Bachelor's 
degree & 2 yrs’ exp req'd 
Send resume to: HR Dept. 
Fulcrum Logic, Inc 
Short Hills Plaza 
636 Morris Tpke, Ste 2J 
Short Hills, NJ 07078 


Software Engineer req. by Soft 
Dev & Conlt. Comp. Duties 
Design Develop Install, cus- 
tomize & maintain Solaris & 
Windows Server. Installing and 
supporting Veritas & Sun 
Cluster, Net Email and Directory 
Server. Support Highend 
servers. Job to be performed at 
Willowgrove, PA, & various 
unanticipated client sites 
throughout the US as 
assigned. Req. A Masters 
degree in Eletronics, or Comp 
Sci, & 1 yr exp. in relevant field 
or related occup. 40 hrs/wk 
9AM-5PM, Mon-Fri. Contact 
President, SMTK @ Wiliow 
grove, SPCE# 3042, 2500 
Mooreland Avenue, Wilowgrove 
PA 19090. 


SOFTWARE ANALYST. 
Columbus OH to develop 
controller software for 
TS/GPS instruments. Must 
have exp. w/Visual C++, 
SQL server, GUI develop, 
for CE devices; survey & 
good understanding of sur- 
vey controller preferred. A 
BS degree or eqv., 3-mos- 
exp required. Resumes to 
1347 Worthington Woods 
Bivd., | Columbus OH 
43085. No calls. 


ASIC Design Eng - Develop 
audio & video multimedia tech- 
nologies for home networks. 
Design H/W architecture for 
FPGA & ASIC using Verilog & 
VHDL. Synthesize H/W design 
using Synopsys & Synpicity 
tools. Responsible for test 
bench & board level verification. 
Develop IP cores for multimedia 
LSIs & ASICs & write device dri- 
vers using SCSI & FCIP proto- 
cols. Bach's deg in Comp Sci 
Physics or Elec Engrg reqd + 2 
yrs exp in job offered. Snd 
resume to Panasonic 
Semiconductor, 550 South 
Winchester Bivd, Ste 300, San 
Jose, CA 95128, Attn: Todd 
Windley, SP. 


THE WORLD'S 
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IT comp with head office in NYC 
seeks qualified applicants for the 
following positions: Software 
Developers Sr. Solutions 
Analyst, Business Analyst and 
DBA. Training/experience with 
any or all of the following 
PowerBuilder, Oracle, SQL 
Server, Sybase PL/SQL, .Net 
Crystal Reports, Rational Rose. 
Lotus Notes/Domino, VB, ASP, 
JavaScript, HTML, DHTML 
CSS, XML, Developer 2000 
Java, ERwin, DBArtisan, Visio. 
Great Plains, Toad, MS Project 
and IIS. Resumes to Vitech 
Systems Group, Inc., 401 Park 
Ave South, NY, NY 10016 


IT|Careers.com 


Programmer-Analyst: Improve 
system; install hardware/soft- 
ware; analyze operational pro- 
cedures; identify problems; pre- 
pare reports/diagrams; design 
modify programs/applications to 
automate bookkeeping/report 
system. 40Hrs/Wk. 9:00 am 

5:00 pm. Req: Bachelor's in 
comp. sci./comp. prog./eng 
math or related (Employer will 
accept foreign deg. equiv. or 
equiv. in exp. or any comb. of 
edu. & exp.) + 2 yrs. exp. in job 
Off. or 2 yrs. as tech. consult/sys. 
oper. or related field. Resume to 
Aysha Food, Inc. 1735 
Lexington Rd., Athens, GA 
30605 


HAVE A VARIETY O 


IT JOB OPENINGS? 


POST THEM IN OUR 


JOBS DATABASE 


NOW POWERED 


BY 


CAREERJOURNAL.COM 


BECOME A 


CORPORATI 
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www.itca 
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AT 


reers.com 


Systems Analyst for Latin 
America Banking Institute 
— Uses system skills to ana- 
lyze Latin Banking systems 
& business req., designs & 
dev. software programs for 
integrated systems for Latin 
American Banks, works w 
IBM, AS/400, RPG, ILE 
interactive systems for Latin 
American banks. 40 hrs per 
wk, M-F 9AM-6PM. 2 yrs 
exp. in job offered. Fax 
resume to Datapro, Inc. Attn 
William Montiel, Case #02- 
1232 (305)377-3282 


Programmer Analyst 
Install, configure, administer. 
tune & troubleshoot Sybase 
Replication Server 11.5.1 & 
SQL servers using Async 
VO. Transfer data between 
servers using BCP. Per- 
form data modeling-logical 
& physical design. Req 
Masters in Computer 
Science. 40  hr-wk. Job 
Interview Site: Irvine, CA 
Send resume to Synertech 
Inc., 1100 Irvine Bivd, #493 
Tustin, CA 92780 


Software Engineer, 


Biomedical Research 
Job site: Sylmar, CA 
Send resume _ to 
Second Sight, attn 
Karen Morris, 28460 
Avenue Stanford, 


Suite 200, Valencia 
CA 91355 


Database Administrator/Analyst 
is sought t manufacturer of 
medica n 
Bartlett t > technical & 
functional su; t to QAD(MFG 
PRO) ERP system using 

] QAD MFG/PRO 


M 


Progress 
ist have 

Eng. or 
job or 4 

yr. related Database 
Developm 

Related 

exp in 

MS Office St 

Send 


Program Analysts for 
Peoria, IL office. Design & 
Develop so are applications 
using Ora Erwin, Inter- 
woven, Cooigen, XML, UML 
C++, ClearCase, ClearQuest 
PVCS, UNIX; Bachelors reqd in 
Computers, Engineering, Math 
or any related field of study + 2 
yrs of related exp. 40 hrs/wk 
Must have proof of legal 
authority to work permanently 
in the U.S. Send resume to HR 
Manager, Redsalsa_ Tech- 
nologies. Inc. 14001,N. Dallas 
Parkway, # 550 Dallas, TX 
75240 


IT|Careers 


Sr. Oracle DB Administrators 
needed at various client sites to 
analyze & define IT strategy for 
business infrastructure dvipmt & 
data mgmt. Dsgn, dvip, adminis- 
ter & coord MSQL, Oracle & 
DB2; migrate Maintrame/Legacy 
DBs to client/server N-tier arch 
configure server for web ser- 
vices customize/integrate 
mpimt Lawson 

migrate solutions 

Financia Send resume 
Global! Consultants 

Hireme 25 = Airport 


ristown, NJ 07960 


Admins 
lesign/develop appis using 

Notes, Lotus Script 

HTML, XML, Ore 
MS SQL Server, etc. unde 
UNIX/Windows OS nstal 
administer/configure Lotus 
Notes R4/R5, Domino R6 
Windows NT, maintain backup 
schedule maintenance, adminis- 
ter user accounts, provide user 
support for network problems 
Require: B.S. or foreign equiv in 
CS/Engg(any branch) with 2 yr: 
exp in system admin High 
Salar F/T. Travel involved 
Resume to HR 
Associates, Inc., 405. 
Ste 102, Des Moines, IA 


ers needed. Seeking 
Dossessing BS 

5 yrs. relevant exp 

of the req. relevant exp. must 


with 


Laboratories 
SOCKS Jualified 
Managers. Bachelors 
Computer Science 


requi 


red with experience ir 

ware architecture, design 
development based on Ora 
database, Forms and Reports 
Salary ymmensurate with 
experience. Multiple openings 
available. An EOE. Respond by 
mail to Abbott Laboratories. 
Dept. 323, Bidg. AP6D2, 100 
Abbott Park Road, Abbott Park 
IL 60064-32537. MED-KE-3456 


Z3 Technologies, Inc. a fast 
3 oftware firm is looking 
mputer consultant 
Should have bachelor's degree 
in computer science/related field 
with 2 years experience in 
Requirement Anal Design 
and development. Resolving the 
technical issues. Programming 
in Sybase, SQL Server, VB 
Power Builder, PFC, Oracle 
Win2k, WinNT and skilled in 
Microsoft software. We accept 
foreign education equivalent of 
the degree, or the degree equiv- 
alent in education and experi- 
ence. Send resume and cover- 
ing letter to: Z3 Technologies 
Inc 1803 Shepherd Ct 335 
Waukesha, WI-53186. 
resumes@z3tech.com 


SOFTWARE ENGINEERS 

Multiple Openings. Will design 

code and test applications or 

Windows NT/2000 

using VC++. Will propose net- 

work design, define impiementa- 
Nn processes, troubleshoot 

potential issues 

ation enha 

new f 

deve’ 


clude 


as well as C 
web based 
DHTML, XML 


years experie 
pations 

Programming 

ed expertise 


Design and 


Offered 
ae 


adhere 
nit te 
Mentor 
ode reviews 
and unit test f 


maintain 


elated field of 
Aor 
pp 
nrestricted 


the 


Chief 
& prov 

0 technology manag 
| ning & imple- 
mentatio of communications 
infrastructure & servers req. to 
credit card operations of 
Visa & Master cards. Measure & 
determine 1b! ategies { 
a local point of sale to the 

moment a statement is prir 


be mailed 


among 
quality 

work. Pr 
channels throug 


Microsoft pr 


Analyze the hard 

ments of the differ 

based Digital Unix, 

& Oracle. 40 hrs per wk fh 
9AM-6PM. BS in computer engi- 
neering & 1 yr exp. in job 
offered Fax resume to 
Technicard, Inc ATTN: Marcio 
Baltondo. (305) 442-8616 
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penings 
nsultant as 
Ana’ 
Manager, Manager 
Software 
ossess MS degree in} 
gineering or related! 
field or BS plus 5 years of| 
progressive exp. MBAis plus 
Apply with salary req to: 431 
South ith St #2605 
Minneapolis, MN 55415 or 
1919 E Birch St, #MM38 
Brea, CA 92821 or Email t 
jobs@oralie.com 





IT Bus. Dev. Mgrs Needed 


Responsible for ali aspects of 
acct relationship mgmnt 
sales/business development for 
co's vertical bus. industries 
including organizing, planning, & 
implementing marketing & sales 
Strategies. Analyze client rqrm- 
nts & advise on !T resource 
competencies required by 
clients Promote services 
through advertisements & bus. 
proposals. Lead tech/functional- 
consulting teams to deliver client 
projects. Map client processes 
to relevant technologies in order 
to generate targeted revenues 
Act as a liaison between the 
client & project team in all phas 
es, including preparing tech 
proposals, negotiating sched- 
ules, deliverables, & payments 
Assist in the planning of various 
modules of the project such as 
bus. Analysis, design, develop: 
ment, testing, & implementation 
modules. Interact w/ clients 
acct. mngmnt, & direct follow- 
ups. Advise customers on 
Software Development Lifecycle 
(SDLC). Exp. in bus. process- 
es/methodologies, understand- 
ing of software technologies & 
ability to visualize & propose 
solutions for customers’ soft- 
ware needs. Exp w/ SEI CMM 
Level 5 & onsite- offshore soft- 
ware services methodologies 
also desired. Positions require a 
Bachelor's degree in Bus 
Admin, MIS, Management 
Mrkting, or Engineering plus rel 
evant industry experience as a 
Bus.Dev.Mgr. or related occupa- 
tion such as Tech. Mrkting Mg 
or Sales/IT Mgr. Positions 
requires travel & relocation 
Qualified candidates please 
send resume to 
Resumeus@satyam.com ref 
Job code# BDM 090803 or 
respond by mail to: Satyam 
Computer Services, Ltd., Attn 
HR, 8500 Leesburg Pike, Suite 
202, Vienna, VA 22182 


BUSINESS SOFTWARE ANA 
LYST: Business Software Analyst to 
study, review and analyze business 
processes to determine feasibility 
f implementation of Oracle 
Financials Software with Mobile 
Supply Chain and Advance Supply 
Chain Planning. Confer with per 
sonnel of ali functional! iness 
units to analyze current operatir 
procedures and prepare busine: 
processes for all functions of busi 
ness operations including financial 
management, accounts payable 
accounts receivable inventory 
order entry, payroll, benefits, etc 
Conduct fit gap analysis to deter 
mine if existing business operations 
an be mapped into Oracle 
Financials or if customizations tc 
Oracle Financials are required to 
onform existing operations. Also 
responsible for datamapping, data 
conversion, testing and building 
and reviewing prototypes. Require- 
ments: Bachelors Degree or equiv 
alent in Business Admin. or related 
field and two years experience as a 
Business Software Analyst, knowl 
edge of Oracle Financials Software 
with Mobile Supply Chain and 
Advance Supply Chain Planning 
Salary: $67,995/ year. Working 
Conditions: 8:00 A.M. to 5:00 P.M 
40 hours/week, involves extensive 

and frequent relocation 

Site Manager, Armstrong 
( Careerlink, 1270 North 
Water Street, PO Box 
Kittanning, PA 16201, Job Nc 
WEB354877 


Software Engineers - Main- 
taining & supporting tele- 
communications and inter- 
active voice response sys- 
tems.Min Edu-BS in Comp 
Sc/Engg. or equi. Min Exp- 
2yrs. Job may involve work- 
ing at various locations 
throughout the US 


Please send resumes to 
Frontend Systems, Inc 
P.O. Box 4287, Cary, NC 
27519-4287 
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Computer Systems Analyst 
Analyze data process'g reqm'ts 
to dev. new or modify exist'g inf 
sys. Using current SDLC 
approach & OO concepts 
design & implement software 
sys. Employ knowledge of 
Microsoft web dev. tools to dev. 
sys. U integrate w/ proprietary 
account'g software, & knowl- 
edge of Microsoft office tools t/ 
dev. customized report'g 
solut'ns. Maintain & support 
CMS Open System. Req.: BS 
Comp. Sci. maj -software sys- 
tems; or equiv. Agg. 1 yr exp pre 
or post graduation in related 
field of software systems, during 
which time duties included soft- 
ware dev.& imp., database 
admin & tech Supp 
Knowledge of C/C++, UNIX 
Visual Basic, HTML, SQL/TSQL 
Verifiable refs. Sch: 40 hrs wk 
M-F, 8:30 am - 5:30pm. Must 
be available occasional week- 
ends & flexible as to hrs. ; over- 
time as needed. Send resume 
Heather Crooks, Staff Recruiter. 
Gunster, Yoakley & Stewart 
PA., 777 South Flagler Drive 
Ste. 500 East, West Palm 
Beach Florida 33401 
hcrooks@gunster.com; F: 561- 
655-5677; T: 561-655-1980 


BUSINESS SOFTWARE ANA 
LYST: Business Software Analyst 
to study, review and analyze busi- 
ness processes to determine feasi- 
bility of implementation of Vantive 
computer software with experience 
in Erwin, Remedy and Staad 
Confer with personne! of all func- 
tional business units to analyze 
current operating procedures and 
prepare business processes for all 
functions of business operations 
Conduct fit gap analysis to deter- 
mine if existing business opera 
tions can be mapped into Vantive 
or if customizations to Vantive are 
required to conform existing opera- 
tions. Also responsible for design 
changes, data mapping, conver- 
sion, testing, building and review- 
ing Requirements: Bachelors 
Degree or equivalent in Computer 

ience or related field and two 
years experience as a Business 
Software Analyst, Vantive, Erwin 
Remedy and Staad Salary 
$67,995/year. Working Conditions 
8:00 A.M. to 5:00 P.M., 40 
hours/week, involves extensive 
travel and frequent relocation 
Apply: Fayette County Careerlink, 
Attn Careerlink Program 
Supervisor, 32 lowa Street 
Uniontown, PA 15401, Job No 
WEB354883 


SOFTWARE ENGINEER 
Software engineer to design 
develop and test computer pro- 
grams for business applications 
analyze software requirements 
to determine feasibility of 
design; direct software system 
testing procedures using exper- 
tise in SOAP, WSDL, EJB, UML 
Ora SQL and _ JBuilder. 
Requirements Bachelor's 
Degree or equivalent in 
Computer Science or related 
field and two years experience 
as a software engineer or com- 
puter programmer, knowledge of 
SOAP, WSDL, EJB, UML 
Oracle, SQL and JBuilder. 
Salary: $78,000/year. Working 
Conditions: 8:00 A.M. to 5:00 
P.M., 40 hours/week, involves 
extensive travel and frequent 
relocation Apply Site 
Administrator, Greene County 
Team PA CareerLink, 4 West 
High Street, Waynesburg, PA 
15370, Job No. WEB354893 


Senior Database Admini- 
strator BS/Computer 
Science or MIS, with 
extensive experience in 
database administration, 
using Sybase, MS SQL 
Server, T-SQL, DBArtisan 
and Erwin. Send resumes 
to Open Biosystems, Inc., 
6705 Odyssey Dr 
Huntsville, AL 35806. 


Computer/Info Systems 


Lowe's Companies, Inc., a lead- 
ing provider in home improve- 
ment products, is currently seek- 
ing applicants in Wilkesboro, NC 
for various levels of Database 
Administrators, Data Systems 
Analysts MIS (Analysts. 
Programmers and Trainees) and 
Programmers. Depending upon 
the position, applicants must 
possess a BS or MS and/or 
equivalent combination of edu- 
cation and/or experience and 
related skills. 


Resumes should be submitted 
with a cover letter referencing 
specific job title of interest to: P. 
Norwood, Corp. Recruiter, 
Lowe's Companies, Inc., 1605 
Curtis Bridge Rd., Wilkesboro. 
NC 28697. APPLICATIONS 
SUBMITTED WITHOUT REF- 
ERENCE TO JOB TITLE WILL 
NOT BE ACCEPTED. EOE 
M/F/D/V 


Sr. Programmer/Analyst: Anal- 
yze, design, develop, test 
implement and maintain cus- 
tomized software applications in 
a client/server environment. May 
be used on multi-tier systems 
related to Internet/IntranevE 
Commerce. Must have BS or 
equivalent in CS/Math/Engin- 
eering or related. Must have 2 
years exp. in job offered or relat 
ed Software Development using 
JavaScript, ASP,SQL. Must be 
willing to be assigned to unantic- 
ipated client sites throughout the 
United States. Salary: $82,000) 
yr Hrs: 8:00am-5:00pm, 40/wk 
Please send 2 copies of resume 
to: Case # 200202846, Labor 
Exchange Office, 19 Staniford 
St., 1st Fl., Boston, MA 02114 


Software Engineer to design. 
develop and maintain software 
applications using C/C++ 
Oracle, Pro*C, Crystal Reports 
on Unix and Windows 
Platforms. Require: MS Degree 
in Science/Engineering or a 
closely related field with 2 
years of progressively responsi- 
ble experience in the Job 
offered or in the related occupa- 
tion of Programmer/Analyst or 
BS Degree with 4 years experi 
ence. Extensive travel on 
assignments to various client 
sites within the US is required 
Competitive salary offered 
Apply by resume to Ravi 
Kandimalla, Everest Comp- 
uters, Inc., 900 Old Roswell 
Lakes Parkway, Suite 300 
Roswell, GA 30076 Attn 
JobSA 


SOFTWARE ENGINEER, 
SALES MANAGER, 
AND 
BUSINESS ANALYST 


Glendale based IT Company 
has multiple openings for 
Software Engineers. 
Sales Managers, and 
Business Analysts 
These positions may require 
travel throughout the U.S. For 
consideration please send 
resume and salary history to: 
Trinus Corporation 
330 North Brand Blvd. 
Suite 324 
Glendale, CA 91203 


Applied 
Solutions Architect 


Req's bachelor's degree in 
computer science or engi- 
neering; 5 yrs exp as a 
Content Server Architect, Sr 
Architect or Technical Project 
Manager; & 2 yrs exp imple- 
menting full Content Server 
product suite, J2EE, IBM 
WebSphere & BEA System 
Weblogic. Email resume to: 
resumes@fatwire.com, __ ref 
iD# ASA001. EOE M/F/D/V 
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Continued from page 1 
Blackout 


Forces have been working with 
the U.S. Department of Home- 
land Security and the private 
sector since the blackout to 
search system logs of critical 
utility control computers for 
evidence of intentional insider 
abuse or outside intrusions. 

“All eight FBI field offices 
that were affected and all of 
the Joint Terrorism Task 
Forces were convened imme- 
diately on Aug. 14 to investi- 
gate the potential for terrorist 
involvement in the blackout,” 
said Larry Mefford, executive 
assistant director for counter- 
terrorism at the FBI, speaking 
Sept. 4 at a hearing of the 
House Select Committee on 
Homeland Security. 

“Our JTTFs are looking at 
the issue from various per- 
spectives. One is the external 
threat to see if we have signs 
of actual sabotage. We have 
not yet found any evidence of 
that,” said Mefford. 

“In addition, we’re very con- 
cerned about the insider 
threat, somebody who would 
have access to critical systems 
from a physical standpoint, a 
sabotage standpoint and a 
computer intrusion stand- 
point,” Mefford added. “We 
have not yet seen evidence of 
that, but this is [a] preliminary 
assessment. We are reviewing 
the computer logs for evi- 
dence of that type of activity.” 

Congress has also turned up 
the heat on both the govern- 
ment and the private sector to 
deliver answers on whether a 
cybersecurity failure in one or 
more systems could have con- 
tributed to the blackout, espe- 
cially since the power failure 
occurred at the height of the 
Blaster worm outbreak. 

Government and industry 
experts speaking unofficially 
with Computerworld have 
linked Blaster to the severity 
of the blackout, since on the 
day of the blackout Blaster af- 
fected the communications 


Periodical postage paid at Framingham. Mass.. and o 
>mbined issue f 
300 N. Zeeb Road, Ar 
ce Center (CCC 
ed from Ret 


except a 
Microfilms 
ered with the Copyright Clear 
permission to reprint may be purc! 
site: www.reprintbuyer.com. E-mail: reprints’ 
ica. $250 per year: Europe 





two weeks 
bor, Mich. 48106. Computerworid is 
provided that the base fee 

e Wywadis, Computerwor 
jputerworld.com. Requests for miss: 
$295 per year: all other countries 


networks used to manage the 
power grid [QuickLink 40999]. 
But the degree to which the 
hampered flow of data over 
those networks might have 
contributed to the blackout is 
still unclear. 

According to a transcript re- 
leased by the House Energy 
and Commerce Committee 
that detailed telephone calls 
made between FirstEnergy 
Corp. and the Midwest region- 
al power grid operator just 
hours before the blackout, a 
control room operator at 
FirstEnergy complained that 
the Akron, Ohio-based compa- 
ny had “no clue” what was 
happening because of unspec- 
ified computer problems. 

“Our computer is giving us 
fits,” the operator said. “We 
don’t even know the status of 
some of the stuff around us.” 

Responding to accusations 
that his company may have 
triggered the cascading fail- 
ure, H. Peter Burg, chairman 
and CEO of FirstEnergy, said 
at a Sept. 4 hearing of the 
House Energy and Commerce 
Committee that events on 
FirstEnergy’s system “in and 
of themselves could not ac- 
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count for the widespread na- 
ture of the outage.” 

But Burg did say that First- 
Energy experienced problems 
with its Energy Management 
System on Aug. 14. That sys- 
tem includes file servers, proc- 
ess-control servers and work- 
stations that capture data from 
supervisory control and data 
acquisition systems, which are 
widely used to manage large 
industrial operations. 

“We are still evaluating the 
functionality of that system 


that was available to our dis- 
patchers during this time 
frame,” Burg said. 

Computerworld requested 
an interview with FirstEnergy 
CIO Ali Jamshidi to explain 
what types of problems the 
company’s computer systems 
were experiencing Aug. 14. 
However, a company spokes- 
person said FirstEnergy 
wouldn’t make any IT person- 
nel available for interviews 
until the investigation into 
those problems is completed. 

Meanwhile, Michehl Gent, 
president of the North Ameri- 
can Electric Reliability Coun- 
cil, who also spoke at the Sept. 
4 Energy and Commerce hear- 
ing, said initial analysis of data 
taken from the system logs of 
the various utilities involved 
in the blackout shows that the 
IT infrastructure at various 
points throughout the regional 
grid wasn’t recording critical 
events properly. 

“Each event, which might be 
a relay or circuit-breaker op- 
eration or an electrical fault, i 
time-stamped as it occurs,” 
said Gent. “Many of these time 
stamps were not accurate be- 
cause the computers that re- 





Firms Unite to Fight Online ID Theft | 


BY JAIKUMAR VIJAYAN 
Key IT vendor and e-com- 
merce players last week said 
they’re forming a coalition to 
fight online identity theft — a 
development that coincided 
with the release of a Federal 
Trade Commission report 
showing identity theft to be 
pervasive and growing. 

The Coalition on Online 
Identity Theft was formed by 
the Information Technology 
Association of America, an 
Arlington, Va.-based IT ven- 
dor trade organization, along 
with Microsoft Corp., several 
security vendors and such 
e-commerce heavyweights as 
eBay Inc. and Amazon.com 
Inc. 

The FTC, meanwhile, found 
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that identity theft accounted 
for nearly $48 billion in losses 
to businesses over the past 
five years. More than 27 mil- 
lion Americans have been vic- 
tims of identity theft during 
that period, and nearly 10 mil- 
lion of those fell victim last 
year alone, the FTC said. 

“For several years, we have 
been seeing anecdotal evi- 
dence that identity theft is a 
significant problem that is on 
the rise. Now we know. It is af- 
fecting millions of consumers 
and costing billions of dol- 
lars,” said Howard Beales, di- 
rector of the FTC’s Bureau of 
Consumer Protection. 

Kevin Pursglove, a spokes- 
man for coalition member 
eBay in San Jose, said that for 
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| the past year eBay has been 

dealing with hackers who have 
spoofed its Web site or sent 

forged e-mails to eBay users in 
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corded the information be- 
came backlogged or the clocks 
from which the time stamps 
were derived had not been 
calibrated to the national time 
standard.” 

In a related development, 
Rep. Edward J. Markey (D- 
Mass.), a senior member of 
both the House Energy and 
Commerce Committee and 
the Homeland Security Com- 
mittee, sent a letter on Aug. 22 
to the U.S. Nuclear Regulatory 
Commission requesting infor- 
mation on the effect the Janu- 
ary outbreak of the Slammer 
worm had on the systems that 
control FirstEnergy’s Davis- 
Besse nuclear power plant. 

“Tt may be too soon to know 
whether the Blaster worm was 
involved in [the Aug. 14] black- 
out,” wrote Markey. 
it is clear that cybersecurity 
was deeply flawed at the Davis- 
Besse nuclear reactor just a 
few months before the black- 


“However, 


out occurred.” DB 


MORE ONLINE 


Our complete Blackout 2 
av online 


2003 cov 


erage is 


Qe QuickLink a3550 
www.computerworld.com 


an attempt to extract confi- 
dential information. 

“The complaints from users 
have increased over the past 
six to nine months,” Pursglove 
said. “We began hearing of the 
same issue from other compa- 
and realized the issue was 
not going to subside.” 

The “firepower” that the 
coalition can bring to bear will 
go a long way toward address- 
ing some of the issues relating 
to identity theft, said Brendan 
Lewis, a spokesman for Moun- 
tain View, Calif.-based coali- 
tion member VeriSign Inc. 

Even though online ID theft 
is growing rapidly, almost 75% 
of ID theft still occurs off-line 
by means of such activities as 
“Dumpster diving,” said John 
Pescatore, an analyst at Stam- 
ford, Conn.-based research 
firm Gartner Inc. D 
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Rogues? Hardly 


NOUGH WITH THE NAME-CALLING ALREADY! “Rogue 

IT” — cases where users have launched their own IT 

projects without inviting the IT department to the party 

— doesn’t deserve that insulting name. Rogue implies that 

these users are unprincipled scoundrels or at least way 
out of line when they do IT themselves. 

But they’re not. They’re doing the very messy, very necessary job 
of fixing business processes in near real time. We can’t do that. We 
don’t have the budget or the staff we’d need. We also don’t have the 
intimate knowledge of the actual business processes, which change 


a lot faster than our systems can. 


Business on the front lines is chaotic. Users 
have to cope with it. When the systems that IT 
implements don’t do the job, users have to work 
around the problems. And when users see ways 
of automating those work-arounds using the 
consumer-grade technology they have access 
to, that’s what they do. 

They’re not rogues. They’re not out of line. 
They’re just trying to survive. 

Are there any IT projects that deserve the 
label “rogue”? Sure. When a non-IT executive 
or manager launches an IT project in order to 
pump up his budget and make himself look 
more important, that’s a real rogue project — 
it’s all about politics and self-promotion, not 
what’s good for the business. 

But that’s not why most users do IT them- 
selves. They come up with their own spread- 
sheet-based applications and script-based auto- 
mation because they need specific process fixes 
right now, not a rough approximation of them 
in six months. 

They plug in wireless LAN access points be- 
cause it takes days or weeks for IT to let them 
move a desk or plug a new employee into the 
network. They hire their own appli- 
cation service providers because 
the IT department drags its feet and 
wants to rejigger the requirements, 
the terms and most of all the sched- 
ule for getting it up and running. 

They want to use IT to make 

some small piece of the business 
run more efficiently and effectively. 
So they do it themselves — in the 
simplest, quickest way possible, 
with the most direct solution to the 
problem. And they do it entirely fo- 
cused on the real business process. 

That’s why their project success 





rates compare favorably to those of our “real” 
IT projects, according to a recent Computer- 
world survey [QuickLink 40666]. When it 
comes to implementing a business process 
change, they know exactly what they’re doing. 

Of course, when it comes to creating IT that’s 
scalable, maintainable and compatible with 
what we’ve already got, they’re usually clueless. 

That’s where we come in. And the first thing 
we usually say is no. No, you shouldn’t have 
done that. No, that won’t scale up. No, it won’t 
integrate with our existing systems. No, we’ve 
never done it that way before. 

Hey, there are good reasons why we say no. 
We're understaffed and underfunded. We see 
all the complexity and work that will be re- 
quired. We know our whole infrastructure is old 
and brittle, and it’s a full-time job just to keep it 
running, never mind bolting on one weird, dif- 
ficult, user-conceived addition after another. 

And there are also not-so-good reasons: 
We're irritated that they stomped all over our 
turf, embarrassed that they got something 
working faster than we could have, bent out of 
shape because everybody is so impressed with 

their clever little hacks. 

But we can’t control the business 
needs these users are adjusting to. 
And we can’t change our systems 
as fast as they need us to. 

Users can. And they will. 

So before you make your plans 
for dealing with user-initiated IT 
projects, understand this: Inconve- 
nient or just plain miserable as it 
may be for us, these users are do- 
ing what’s right for the business. 

They’re not rogues. And we 
really ought to stop calling them 
names. D 
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Paging Common Sense . . 


Mission-critical Windows NT server goes down in the 
wee hours, and none of the NT admins answers. a 
page, so a support tech has to come in at 4 a.m. The 
downtime costs thousands of dollars. What hap- 
pened? “In a cost-cutting effort, someone changed 
the pager pian to a limit of 500 pages per month, 
which had been reached,” sighs pilot fish on the 
scene. “And instead of a plan where additional pages 
would be 25 cents, they saved a few pennies by cut- 
ting off all additional pages.” 
How to Save Leftovers 
This t pitot fish SHARK inthe carly 
is puzzled when 1980s, techie 
ne spots anolé — TANK x. at this Army 
acquaintance in data center is 
the building-apro- _: pulling a bulky cable 
off a year before, when: floor when he snags an- 
the company retired its |; other cable and takes 
Honeywell mainframes. : down the mainframe. 
“When | asked him, he | After that, the IT manag- 
told me that he had been : er tells staffers to aban- 
hired to support a con- : don all old cables under 
version of the Honeywell : the floor. Result: Within 
applications to IBM : months, so many unused 
mainframes,” says fish. : cables have accumulat- 
“Turned out that our —_: ed that no new equip- 
newly hired VP of IS had : ment can be added, says 
spotted these no-longer- : a pilot fish there. “So 
needed systems on in- : over a long weekend, we 
ventory and was going : removed all the equip- 
to ‘save’ money by con- : ment, reinstalled every- 
verting them to IBM.” : thing - and disposed of 
: hundreds of pounds of 
Call the Teamsters : unused cables.” 
This college beokstore’s 
needs upgraded soft- _: User can’t get onto the 
ware to connect toits  : Web, so he calls his 
printer and bar-code —: ISP’s help desk. “After 
scanner. And pilot fish : checking all the normal 
thinks that’s what he’s : things, | asked him if he 
asking for when he calls had activated the Win- 
the vendor's support de- : dows XP firewall,” says 
partment and says, “I: support pilot fish at the 
need to see if you can | ISP. “He had. | asked 
help me find some dri- 
vers for a bar-code 
scanner and a receipt — 





| can’t pull all-nighters every night. 


Thing is, our backup and recovery system has to. 


it can’t rest. 


Not even for a second. 


Not if | hope to get some myself. 


Save the day. 


Make sure your data’s always safe and you'll save yourself a lot of worry. And work. One way is with EchoView™. A potent, new data 


a protection appliance that continually captures and journals data as soon as it’s written, for nonstop protection. And EchoView™ provides 


EchoView” rapid recovery to any point in time, to keep business humming. So while your systems may be disrupted, your nights won't be. 


=> 
Learn all the ways we can help you at www.savetheday.com. x, STORAGETEK Save the Day.” 
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